3204561 - Error AADSTS50011 or AADSTS50105 when trying to authenticate to SuccessFactors via IAS

• When trying to activate IAS, the user is receiving reply URL faulty error:
• The user is receiving the error AADSTS50011 when trying to sign in to an application that has been set up to use Azure AD for identity management using SAML-based SSO:
  
  AADSTS50011: The reply URL 'https://example/saml2/idp/xxx/example.example.example.nl' specified in the request does not match the reply URLs configured for the application 'https://example.example'. Make sure the reply URL sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/urlMismatchError to learn more about how to fix this
  
  
• The user is receiving the error AADSTS50105 when trying to sign in to an application that has been set up to use Azure AD for identity management using SAML-based SSO:
  
  AADSTS50105: Your administrator has configured the application SAP SuccessFactors Preview SSO to block users unless they are specifically granted ('assigned') access to the application. The signed in user 'xxx' is blocked because they are not a direct member of a group with access, nor had access directly assigned by an administrator. Please contact your administrator to assign access to this application.

SAP SuccessFactors HCM Suite

Reply URL faulty, Identity Provider, Azure, custom domain, AADSTS50011, SAML-based SSO, AADSTS50105, AssertionConsumerServiceURL, application <GUID>. Reply URL value in Azure AD , KBA , LOD-SF-PLT-IAS , Identity Authentication Services (IAS) With BizX , BC-IAM-IDS , Identity Authentication Service , LOD-SF-RMK-ICS , Internal Career Site Builder (CSB, IAS, etc ...) , How To