ADFS 2.0 |错误：MSIS7612（使用具有相同标识符的两个信赖方信任） [英] ADFS 2.0 | Error: MSIS7612 (Using two Relying Party Trusts with same Identifier)

问题描述

首先，请原谅我，因为我对ADFS知之甚少。我们正在使用它来使用SalesForce进行SAML SSO。但是，我们有一些salesforce（完全不同的帐户/数据库）用户必须登录的实例。 

目前，我们必须在两台服务器上安装两个ADFS实例。实例 因为当我们尝试添加第二个信赖方信任时，我们会收到错误：

" MSIS7612：依赖方信任的每个标识符在所有转发方都必须是唯一的信任AD FS 2.0配置。"

 

所以我明白是什么告诉我......但是有办法解决这个问题吗？问题是我的普通SalesForce生产实例和沙箱测试实例都使用saml.salesforce.com作为他们的idenfitier。 

我们不使用入站认证（SalesForce将达到的地方） out ADFS）只有客户端直接发送到此ADFS服务器进行登录。有没有办法关闭入站并允许多个 中继使用相同的标识符？ 

解决方案

< BLOCKQUOTE> bueller？

First, forgive me as I know very little of ADFS. We are using it to do SAML SSO with SalesForce. We however have a few instances of salesforce (totally different accounts / databases) our users must logon to. 

At current time we have to have two instances of ADFS on two servers for each instance because when we try to add the second Relying Party Trust we get the error:

"MSIS7612: Each identifier for a relying party trust must be unique across all relaying party trusts in AD FS 2.0 configuration."

 

So I understand what is is telling me... But is there a way to get around this? The problem is both my normal SalesForce production instance and the sandbox testing instance both use saml.salesforce.com as thier idenfitier. 

We do not use inbound authentication (where SalesForce would reach out to the ADFS) only clients being sent directly to this ADFS server for logons. Is there a way to turn off that inbound and allow for multiple relays with the same indentifier? 

解决方案

bueller?

这篇关于ADFS 2.0 |错误：MSIS7612（使用具有相同标识符的两个信赖方信任）的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！