SamuelP.19985 (Customer) asked a question.
I have a customer trying to integrate with our app via Azure SSO SAML 2.0. the SAML handshake is working fine but when the user is trying to enter the application they get a 400 error. The logs show "Unknown Profile Attribute" and debug lists the following attribute names:
AttributeNames
[http://schemas.microsoft.com/identity/claims/tenantid, http://schemas.microsoft.com/identity/claims/identityprovider, http://schemas.microsoft.com/identity/claims/objectidentifier, http://schemas.microsoft.com/claims/authnmethodsreferences]
I'm lost because I've done hundreds of these integrations and I've never seen this issue before.
I don't know of a location in the Azure config where we can stop these attributes from being passed. Has anyone seen this or been able to fix this issue?
Hello @SamuelP.19985 (Customer) Thank you for reacting out to our Community!
Usually the attributes are setup on the Single Sign-on -> Attributes and Claims. However if these are not there, we recommend to reach out to Microsoft Support for additional assistance as this would be their area of expertise.
Community members help others by clicking Like or Select as Best on responses. Try it today.
Okta Identity Engine (OIE) Ask Me Anything: Get answers from product experts by clicking here.