Closed klogan12 closed 5 years ago
You don't need to edit the IdP Metadata. Here's the step you can follow:
Override the issuerUri parameter of SAML Assertion TP in your RP Policy (I believe you have defined the SAML Assertion TP in the Base/EXT Policy. In your case, the RP policy is B2C_1A_signup_signinsaml) like below:
`
`
Save and Upload the Policy
Now get the IdP Metadata from https://tenant-name.b2clogin.com/tenant-name.onmicrosoft.com/B2C_1A_signup_signinsaml/samlp/metadata
Got it , thanks for the response!
I have configured Azure B2C as my SAML provider using the steps mentioned here.
XML i got from here https://tenant-name.b2clogin.com/tenant-name.onmicrosoft.com/policy-name/Samlp/metadata have entity ID as below https://login.microsoftonline.com/cvtrial.onmicrosoft.com/B2C_1A_signup_signinsaml
But when a user attempts login from SP , the SAML response contains different uri in entity field. one embedded with "/te" https://login.microsoftonline.com/te/cvtrial.onmicrosoft.com/B2C_1A_signup_signinsaml
For me to proceed , i have edited IDP metadata XML to include this te and updated on SP. Then it worked.