MarkB.51319 (Customer) asked a question.
How to integrate okta as idp from Azure B2C using SAML2
hi, i created set of custom policies in AD B2C to integrate use of OKTA as external IdP from B2C. I can see in SAML tracer I am getting back successful SAML response back to B2C but then Microsoft throws an error:
AADSTS50107: The requested federation realm object 'http://www.okta.com/e....8' does not exist.
The only areas that I suspect could be wrong is either specifying SSO URL as 'https://login.microsoftonline.com/login.srf'
and Audience URI as 'https://login.microsoftonline.com/{tenant id}/' or missing some attributes mapping.
Has anyone succeeded in doing this?
Thank you
Mark
Andrei from OKTA is here. Please take a look at the following documentation regarding the issue reported by you.
https://help.okta.com/en/prod/Content/Topics/Provisioning/azure/azure-identify-identity-provider.htm
https://support.okta.com/help/s/article/Access-to-Office-365-from-Okta-fails-with-error-AADSTS50107-Requested-federation-realm-object-xxx-does-not-exist?language=en_US