Microsoft AD FS professional required for debugging one error in relying party trust set up.
$30-70 USD
Chiuso
Pubblicato più di 6 anni fa
$30-70 USD
Pagato al completamento
Hello,
We have some application written over LAMP stack and hosted on Linux server on Amazon EC2 instance.
We are now planning to allow customers to use their on-premises Microsoft AD credentials to authenticate on our LAMP application.
Our client's infrastructure team sent this:
"In order to integrate with our Active Directory we will require some information to set up a trust.
Could you provide us with either of the following:
Federation metadata address
Federation metadata to file
If you do not have these we can set up the trust manually, in which case you’ll have to provide us with the following:
Token encryption certificate (optional)
SSO URL (WS-Federation and/or SAML 2.0)
".
We already managed to setup the trust. Now when user is authenticated while returning back to application we are getting some error in error logs.
We are pretty sure that this error occurs because of some wrong certs configuration in SIgnature tab in relying party trust's signature tab.
I have attached error log's screenshot for your reference.
I assume this should not be a job more than couple of hours.
Looking forward for an ongoing healthy business relationship. This task can be first of many upcoming future requests.
Regards
Hi Dear
I have good troubleshooting skills in Active Directory . Kindly lets chat and discuss further details of logs and how your topology design .
Lets chat and discuss .
Thanks
Regards
Faisal
Hi,
Having 10 years of experience in IT industry including windows linux servers web Hosting Active directory/Fsmo roles/Active Directory federation service group policy and much more. We can work on your issue regarding tje ad authentication and fix it. Let me know asap so we can start working on it.
Thanks
This is a very easy problem to solve. Save your money and ask the ADFS Admin to modify the trust on his end and disable encrypted SAML response. You won't be passing passwords in the SAML so no need to encrypt it.
If this works and you want to pay me for my advice, I would gladly accept a portion.
Thanks-
Jason