When trying to access Splunk and logging in via AzureAD, I get the following message from AzureAD: "... The reply url specified in the request does not match the reply urls configured for the application: ...". The reply url configured in AzureAD is "https://[mySplunkServer]/saml/acs".
What would be the next step to debug this? Is there a way to verify that the reply URL in Splunk is actually "https://[mySplunkServer]/saml/acs"?
My issue was that I used the wrong name for my splunk server in the Reply URL configured in Azure AD. I found out by looking at the SAML requests/responses between Splunk and Azure AD which are logged by Splunk if DEBUG logging is activated for certain loggers.