search

catalyst / moodle-auth_saml2

SAML done 100% in Moodle, fast, simple, secure
https://moodle.org/plugins/auth_saml2
70 stars 132 forks source link

Azure Enterprise Application - Cannot retrieve metadata for IdP #806

Open dev90001 opened 3 months ago

dev90001 commented 3 months ago

Occasionally we are getting the following error when a user logs into Moodle:

SAML2 exception: Cannot retrieve metadata for IdP 'https://sts.windows.net/guid_removed/' because it isn't a valid IdP for this SP.

Is this the correct way to configure the SAML2 plugin for an Azure AD Enterprise Application? This appears to be working most of the time, however the exception above is thrown sometimes upon login.

Basic Saml Configuration Name Value
Identifier (Entity ID) https://example.com/myapp/auth/saml2/sp.metadata.php
Reply URL (Assertion Consumer Service URL) https://example.com/myapp/auth/saml2/saml2-acs.php
Sign on URL (optional) (blank)
Relay State (optional) (blank)
Logout Url (optional) https://example.com/myapp/auth/saml2/loutput.php

There does not appear to be any documentation relating to how to config Azure AD Enterprise Application using SAML SSO. Is this scenario supported?

Currently using: 27_34STABLE