Azure-docs: Azure Active Directory: Login URL not working

Created on 27 Nov 2019 · 6Comments · Source: MicrosoftDocs/azure-docs

Hi,
I set up SSO between for Salesforce(SP) using Azure Active directory as the Identity provider.

Service provider initiated login works pretty well.

However, when I try to login via Azure login URL ==> https://login.microsoftonline.com/aa98b67f-726a-46b5-9cd5-88a50d8943aa/saml2

I get the error below.

What needs to be done to enable login from Azure Active Directory?

Thanks
d039043

Request Id: a6e0a060-a36b-4acd-9645-30fcd2997900
Correlation Id: ff79c67b-e142-4bb9-8cb6-fe753395de2d
Timestamp: 2019-11-27T16:33:28Z

Message: AADSTS750054: SAMLRequest or SAMLResponse must be present as query string parameters in HTTP request for SAML Redirect binding.

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

ID: adf2d1dc-ab4d-5e4a-d18d-a9f4fba5aedb
Version Independent ID: 2a58c27f-19e8-1a9a-f14a-45db73b91cc2
Content: Tutorial: Azure Active Directory Single sign-on (SSO) integration with Salesforce
Content Source: articles/active-directory/saas-apps/salesforce-tutorial.md
Service: active-directory
Sub-service: saas-app-tutorial
GitHub Login: @jeevansd
Microsoft Alias: jeedes

Pri2 active-directorsvc cxp product-question saas-app-tutoriasubsvc triaged

Source

d039043

All 6 comments

@d039043
Thanks for your feedback! We will investigate and update as appropriate.

MarileeTurscak-MSFT on 27 Nov 2019

@d039043 You are using the wrong URL here. For IDP initiated URL please find the "User Access URL" from Azure AD Application Properties tab. Then you can use that URL in the browser and it will do the SSO. Also alternatively user can login to Access Panel https://myapps.microsoft.com and then click on the application tile to perform the SSO.

jeevansd on 27 Nov 2019

👍1

please-close

jeevansd on 27 Nov 2019

Thanks @jeevansd
Sorry, but where can I find "Azure AD Application Properties" tab?
Still trying to figure out Azure UI and navigation!

d039043 on 27 Nov 2019

@d039043 In the Azure Portal got to Azure Active Directory -> Enterprise Apps -> Search your app -> Click on the app -> Properties page -> User Access URL

jeevansd on 27 Nov 2019

👍1

@jeevansd, what is the purpose of the Login URL?