堆栈内存溢出
  简体   繁体   English

使用 SAML 和 Salesforce 访问 Azure

[英]Access to Azure with SAML and Salesforce

 原文  2021-05-12 10:11:31       azure/ azure-active-directory/ salesforce/ single-sign-on/ saml

问题描述

I configure on Azure AD (my IDP) the Salesforce Sandbox Application (my SP).我在 Azure AD(我的 IDP)上配置 Salesforce 沙盒应用程序(我的 SP)。 I setup all following this tutorial: https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/salesforce-tutorial我按照本教程设置了所有内容: https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/salesforce-tutorial

But when i try to connect using SSO i have this error:但是,当我尝试使用 SSO 连接时,出现此错误:

AADSTS650056: Misconfigured application. AADSTS650056:应用程序配置错误。 This could be due to one of the following: the client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration.这可能是由于以下原因之一:客户端未在客户端应用程序注册的请求权限中列出“AAD Graph”的任何权限。 Or, the admin has not consented in the tenant.或者,管理员没有同意租户。 Or, check the application identifier in the request to ensure it matches the configured client application identifier.或者,检查请求中的应用程序标识符以确保它与配置的客户端应用程序标识符匹配。 Or, check the certificate in the request to ensure it's valid.或者,检查请求中的证书以确保其有效。

I try to add inside API permissions the permission to AAD Graph but not work...我尝试在 API 权限中添加对 AAD Graph 的权限但不起作用...

允许

UPDATE:更新:

Now the error is:现在错误是:

AADSTS700016: Application with identifier 'URL SALESFORCE' was not found in the directory '29ab2178-e8d4-4b83-a2ef-f62ea37a6413'. AADSTS700016:在目录“29ab2178-e8d4-4b83-a2ef-f62ea37a6413”中找不到标识符为“URL SALESFORCE”的应用程序。 This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant.如果租户管理员未安装应用程序或租户中的任何用户未同意此应用程序,则可能会发生这种情况。 You may have sent your authentication request to the wrong tenant.您可能已将身份验证请求发送给错误的租户。

I need help please..我需要帮助请..

Thanks谢谢

1 个解决方案

解决方案1
 0 已采纳  2021-05-18 07:05:27

I solve the problem.我解决问题。 It was a wrong URL because for the Sandbox org i must put URL in that for:这是一个错误的 URL 因为对于沙盒组织,我必须将 URL 放入其中:

https://domain.my.salesforce.com https://domain.my.salesforce.com

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 Azure ACS是否支持像Salesforce这样的saml 2.0 IdP? - Does Azure ACS support saml 2.0 IdPs like Salesforce? 适用于 Salesforce 的 Azure 数据工厂链接服务(Salesforce 问题中的 API 访问) - Azure Data Factory Linked Service for Salesforce (API Access in Salesforce Problem) Windows Azure AD SAML与Salesforce的集成是否支持服务提供商发起的SSO? - Does the Windows Azure AD SAML integration with Salesforce support Service Provider-initiated SSO? 使用 Salesforce 作为 SAML 的服务提供者 使用 Azure B2C 作为身份提供者,如何识别未正确配置的内容? - Using Salesforce as Service Provider for SAML With Azure B2C as Identity Provider, how can I identify what is not configured correctly? 绕过 Azure AD SAML - Bypass Azure AD SAML Salesforce作为Azure ACS中的IdP - SalesForce as IdP in Azure ACS 将 Salesforce 数据拉入 Azure - Pull Salesforce data into Azure 如何允许外部用户访问配置了 Azure 应用代理和 SAML SSO 的本地应用 - How to allow external users access Onpremise app configured with Azure App proxy and SAML SSO 在试用版的 Salesforce 中为 Azure 数据工厂链接服务启用 API 访问 - Enable API access in Salesforce in trial version for Azure Data Factory Linked Service Azure作为SAML 2.0服务提供商 - Azure as SAML 2.0 Service Provider
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM