question

lifonghsu-5831 avatar image
0 Votes"
lifonghsu-5831 asked ·

AADSTS500089: SAML 2.0 assertion validation failed: SAML token is invalid.

I used a custom SAML IDP to federate, but I always get the error code.


Request Id: 2d40239e-635d-48af-9ca0-437f7a5c2900

Correlation Id: 17b56a5c-c043-40e1-af60-fba489f32ff6

Timestamp: 2020-04-24T11:19:51Z

Message: AADSTS500089: SAML 2.0 assertion validation failed: SAML token is invalid.

can anyone help



Thanks

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

soumi-MSFT avatar image
0 Votes"
soumi-MSFT answered ·

@lifonghsu-5831, This error states that the key algorithm of the certificate used is not supported. It seems, somehow the the certificate being used to SAML request to AAD is not liked by AAD and hence AAD is throwing this error.

To help you further, it would be great if you can share some more details on this app and may be screenshots of your configuration for us to understand this in a better way.

Hope this helps.

Do let us know if this helps and if there are any more queries around this, please do let us know so that we can help you further. Also, please do not forget to accept the response as Answer; if the above response helped in answering your query.

· 1 ·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Thank you very much,

I generate new certificate by RSA instead of original ECDSA.

I have confused that, I federate with other service provider with original certificate, others work.

but AAD does not work.

thank you very much.

1 Vote 1 ·
naveenkv avatar image
0 Votes"
naveenkv answered ·

@lifonghsu-5831 I am also facing same issue, is that issue resolved for you?


@soumi-MSFT i tried with slef signed certificate with both SHA1 and SHA256 algorthim . getting SAME error.

·
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.