对Office 365单一登录使用SAML 2.0身份提供程序(IdP) [英] Using a SAML 2.0 Identity Provider (IdP) for Office 365 Single Sign On
问题描述
我已经为Office 365单点登录配置了第三方IdP,具体说明如下 这里.当我手动测试连接性时,我可以使用联合身份登录和注销,没有任何问题.但是当我尝试使用" Microsoft连接分析器测试连接性时 工具",则测试失败,无法证明IdP的被动身份验证端点值为空或为空.但是,我能够成功通过Web浏览器手动登录.以下是我从连通性测试中得到的结果.
I have configured a third party IdP for Office 365 single sign on as explained in here. When I test the connectivity manually, I can sign in and sign out using a federated identity with no issue. But when I try to test the connectivity using "Microsoft Connectivity Analyzer Tool", the test fails saying that IdP's passive authentication endpoint value is either null or empty. However, I am able to sign in manually via web browser successfully. The following is the result I get from the connectivity test.
有人可以建议这里出什么问题吗?
Can someone please suggest what could be going wrong here?
推荐答案
使用该工具验证单个符号时-on是否已正确设置.连接分析器还使用基于WS *的ECP/PAOS测试Active Federation 协议.如果您没有使用它们,则可以忽略以下错误:使用身份提供者的被动联盟终结点来测试被动登录流程.
When you use the tool to verify that single sign-on has been set up correctly or not. The Connectivity analyzer also tests Active Federation using the WS*-based and ECP/PAOS protocols. If you are not using these, you can disregard the following error: Testing the Passive sign-in flow using your identity provider’s Passive federation endpoint.
如果在您的环境中配置了WS Federation(IDP),则可以使用Fiddler Web调试器.您可以参考以下文档链接
If WS Federation (IDP) is configured in your environment, then you could use Fiddler Web Debugger. you may refer the following documentation link to Analyze a WS-Federation Passive Sign-in . See if this helps.
注意:-
Note: -
如果连接测试成功完成,请展开测试详细信息"结果通过遵循错误图标来标识测试遇到的错误的树 在远程连接分析器工具向导中.对于检测到的任何错误状态,将测试结果树扩展到特定的错误,然后单击告诉我更多有关此问题以及如何解决的信息".
If the connectivity test is completed successfully, expand the Test Details result tree by following the error icons to identify the error that the test encountered in Remote connectivity Analyzer tool wizard. For any error state that's detected, expand the test result tree to the specific error, and then click Tell me more about this issue and how to resolve.
--------------- -------------------------------------------------- ------------------------------
如果此答案有帮助,请单击标记为答案"或投票.要提供有关您的论坛体验的其他反馈,请单击
If this answer was helpful, click "Mark as Answer" or Up-Vote. To provide additional feedback on your forum experience, click here.
这篇关于对Office 365单一登录使用SAML 2.0身份提供程序(IdP)的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
