ADFS Authentication Error

Diagnoses

The K2 environment recently configured for ADFS integration. Everything appears to be configured correctly per K2 documentation but we are seeing the error when logging as "ADFS" to login.

Claim mapping configuration cannot be found for this claim. Claim information: Name='User_name'
Issuer='http://apps_adfs_fqn_name/services/trust' Original
Issuer='http://apps_adfs_fqn_name/services/trust'. Please ensure that you have configured k2 server as specified in K2 Help: Installation and Configuration > Configuration > SharePoint > Claims-based Authentication.

Resolution

Issue was resolved per following steps:
-Confirmed that the Replying Party Trusts in ADFS urls were setup correctly via ADFS manager.
The claim coming from ADFS for the IdentityProvider was setup as follow for the Identity.ClaimTypeMap
-OriginalIssuer: http://apps_adfs_fqn_name/services/trust
-Type: http://schemas.microsoft.com/ws/2008/06/identity/claims/authenticationmethod
however the ClaimValue was setup for static credential - urn:oasis:namesSAML:2.0classes:PasswordProtectedTransport.
Changed it
http://schemas.microsoft.com/ws/2008/06/identity/authenticationmethod/windows

This resolved the issue, see link below for more details.
https://technet.microsoft.com/en-us/library/ff603841.aspx

Be the first to reply!

Reply

View our Community Site Map

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded