One of our users in Flipins is getting an error when he tries to turn on his computer. Despite trying with 3 different devices, he continues to get errors. Help was requested from Microsoft support team. (Redacted by Moderator) from the Microsoft team gave the following log as a reply and asked us to review it. As Okta administrator, I could not see a problem on the System Log side for the relevant user. 

Can you review the log below and provide support?

"From AAD Analytic logs we can see the domain is Federated with OKTA and Its failing from IDP side:

AadCloudAPPlugin Realm discovery response: {"ver":"1.0","account_type":"Federated","domain_name":"(Redacted by Moderator)","federation_protocol":"WSTrust","federation_metadata_url":(Redacted by Moderator),"federation_active_auth_url":(Redacted by Moderator),"cloud_instance_name":"microsoftonline.com","cloud_audience_urn":"urn:federation:MicrosoftOnline"}.

Request status: 200

AadCloudAPPlugin GetToken Stop.

Status: 0xC00484C1

Logon failure. Status: 0xC00484C1 Correlation ID: 17F692EB-31EE-4AF4-BF8F-5F3E5603C6B6

WSTrust response error: FailedAuthentication

Error description: <s:Text xmlns:s=http://www.w3.org/2003/05/soap-envelope>Authentication failed</s:Text>

WSTrust response error: FailedAuthentication

Logon failure. Status: 0xC00484C1 Correlation ID: BAB3C1EC-EEFA-44DD-8E0C-47E49661D4AE

Error Code       Symbolic Name Error Description          Header

0xc00484c1      -1073445695    AAD_CLOUDAP_E_WSTRUST_SAML_TOKENS_ARE_EMPTY

​​​​​​​

So please involve OKTA team to check further, as there is no token from Okta.

Thank you."

The error is as follows;

(Redacted by Moderator)