question

laxoza avatar image
0 Votes"
laxoza asked laxoza commented

Unable to authenticate user after federating new domain

I have hybrid environment setup and federated identities are working as expected. We already have multiple domain added in the Azure and federated as well. I have added one more domain(e.g ABC.COM) in Azure and federated the same using the PowerShell command using multiple domain switch.

when i try to authenticate the user with newly added domain (user1@abc.com). If fails with error "The requested federation realm object 'urn: com' does not exist"

@AndyDavid : Can you please me on this ?


adfs
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi @laxoza · Thank you for reaching out.

  • Is it 'urn: com' in the error or there is a specific url like 'http:// hostname/adfs/services/trust'?

  • Do you have child of this domain (child.abc.com) already federated?

  • Is WIA (Windows Integrated Authentication) being used when users are trying to access the application?

0 Votes 0 ·
laxoza avatar image laxoza amanpreetsingh-msft ·

Issue was fixed by updating the this rule- Issue issuerid when it is not a computer account (added the newly federated domain in this rule)

Followed this thread- https://community.spiceworks.com/topic/2088405-requested-federation-realm-object-user-extra-co-uk-does-not-exist

  • The child domain for abc.com was not federated

  • our O365 using WIA

Thanks for your help

0 Votes 0 ·

0 Answers