Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

Unable to access IdP initiated authentication URL using Azure

SA-47873

Summary

Unable to access the Identity Provider (IdP) initiated authentication URL using Microsoft Azure. This results in log in failure.


Error Messages



Not Applicable.


Steps to Reproduce

  1. Configure PEGA-Azure AD integration through SAML 2.0
  2. Access the IdP initiated authentication URL


Root Cause



A software use or operation error. The Relay State URL in the IdP was incorrect.


Resolution

Perform the following local-change:

  1. Update the Relay State URL in IdP to reflect the correct SSO servlet. For example, https://<servername.com>/prweb/sso
  2. Enabling the following logger classes:
    com.pega.pegarules.integration.engine.internal.util.PRSAMLv2Utils
    com.pega.pegarules.integration.engine.internal.sso.saml.SAMLv2ResponseSSOProfileValidator
    com.pega.pegarules.integration.engine.internal.sso.saml.SAMLv2ResponseProtocolValidator
    com.pega.pegarules.integration.engine.internal.sso.saml.SAMLPostBindingHandler


Suggest Edit

Published March 29, 2018 - Updated October 8, 2020

Did you find this content helpful? Yes No

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us