Security

AzureAD SSO - Reply URL does not match

mattiashenrikss
Engager

I am trying to set up SSO with Splunk and AzureAD. I have used these guides: https://docs.splunk.com/Documentation/Splunk/7.1.3/Security/ConfigureSSOAzureADandADFS (Splunk) and https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/splunkenterpriseandsplunkcloud-tut... (AzureAD).

When trying to access Splunk and logging in via AzureAD, I get the following message from AzureAD: "... The reply url specified in the request does not match the reply urls configured for the application: ...". The reply url configured in AzureAD is "https://[mySplunkServer]/saml/acs".

What would be the next step to debug this? Is there a way to verify that the reply URL in Splunk is actually "https://[mySplunkServer]/saml/acs"?

Tags (2)
0 Karma

benwilinski
New Member

Have you tried changed the sso/slo binding to 'http post' on the saml config page?

Screen-Shot-2020-02-25-at-1-45-25-PM

0 Karma

mattiashenrikss
Engager

My issue was that I used the wrong name for my splunk server in the Reply URL configured in Azure AD. I found out by looking at the SAML requests/responses between Splunk and Azure AD which are logged by Splunk if DEBUG logging is activated for certain loggers.

0 Karma