question

CottonWilliam-7709 avatar image
0 Votes"
CottonWilliam-7709 asked AlexanderDemko commented

When making ADFS OIDC web api call we receive MSIS9604 error - Win 2016 Standard Server

When making ADFS OIDC web api call we receive MSIS9604 error - Win 2016 Standard Server 10.0.14393 Build 14393 we get following error:

MSIS9604: An error occurred. The authorization server was not able to fulfill the request.


GET https://domain/?error=server_error&error_description=MSIS9604%3a+An+error+occurred.+The+authorization+server+was+not+able+to+fulfill+the+request.&state=12345&client-request-id=7b4671cc-e938-4acf-d113-00800000007e HTTP/1.1

adfs
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Do you have a Fiddler trace to share or anything more than just this message?

0 Votes 0 ·

I have attached a JSON file which contains the specific errors encountered103908-saml-tracer-export-2021-06-09.txt

please rename the file to .json to view the trace within a SAML tracer.


0 Votes 0 ·
AlexanderDemko avatar image
0 Votes"
AlexanderDemko answered AlexanderDemko edited

In my case the problem was in CORS settings. Resolved by:
Set-AdfsResponseHeaders -EnableCORS $true
Set-AdfsResponseHeaders -CORSTrustedOrigins http... (Redirect URI, specified in ADFS Native Application Properties)

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hi there, This is set in one of the nginx conf files for my application within /etc/nginx/conf.d/ correct? Could you expand on what the http....is please.

0 Votes 0 ·

It is a RedirectUri

0 Votes 0 ·
32134884 avatar image
0 Votes"
32134884 answered 32134884 commented

did you manage to solve the problem?
I have the same

· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

What is the error messahe you see in the ADFS Admin logs when this happens?

0 Votes 0 ·

ШI fixed the error, the problem was in the wrong configuration on the webserver side

1 Vote 1 ·