使用 SAML 和 Salesforce 访问 Azure
Access to Azure with SAML and Salesforce
我在 Azure AD(我的 IDP)上配置了 Salesforce 沙盒应用程序(我的 SP)。
我按照本教程进行了所有设置:https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/salesforce-tutorial
但是当我尝试使用 SSO 连接时出现此错误:
AADSTS650056: Misconfigured application. This could be due to one of the following: the client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, the admin has not consented in the tenant. Or, check the application identifier in the request to ensure it matches the configured client application identifier. Or, check the certificate in the request to ensure it's valid.
我尝试在 API 权限中添加对 AAD Graph 的权限但不起作用...
更新:
现在的错误是:
AADSTS700016: Application with identifier 'URL SALESFORCE' was not
found in the directory '29ab2178-e8d4-4b83-a2ef-f62ea37a6413'. This
can happen if the application has not been installed by the
administrator of the tenant or consented to by any user in the
tenant. You may have sent your authentication request to the wrong
tenant.
我需要帮助..
谢谢
我解决了问题。这是一个错误的 URL,因为对于 Sandbox 组织,我必须将 URL 放入其中:
我在 Azure AD(我的 IDP)上配置了 Salesforce 沙盒应用程序(我的 SP)。 我按照本教程进行了所有设置:https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/salesforce-tutorial
但是当我尝试使用 SSO 连接时出现此错误:
AADSTS650056: Misconfigured application. This could be due to one of the following: the client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, the admin has not consented in the tenant. Or, check the application identifier in the request to ensure it matches the configured client application identifier. Or, check the certificate in the request to ensure it's valid.
我尝试在 API 权限中添加对 AAD Graph 的权限但不起作用...
更新:
现在的错误是:
AADSTS700016: Application with identifier 'URL SALESFORCE' was not found in the directory '29ab2178-e8d4-4b83-a2ef-f62ea37a6413'. This can happen if the application has not been installed by the administrator of the tenant or consented to by any user in the tenant. You may have sent your authentication request to the wrong tenant.
我需要帮助..
谢谢
我解决了问题。这是一个错误的 URL,因为对于 Sandbox 组织,我必须将 URL 放入其中: