Symptom
- When trying to activate IAS, the user is receiving reply URL faulty error:
- The user is receiving the error AADSTS50011 when trying to sign in to an application that has been set up to use Azure AD for identity management using SAML-based SSO:
AADSTS50011: The reply URL 'https://example/saml2/idp/xxx/example.example.example.nl' specified in the request does not match the reply URLs configured for the application 'https://example.example'. Make sure the reply URL sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/urlMismatchError to learn more about how to fix this - The user is receiving the error AADSTS50105 when trying to sign in to an application that has been set up to use Azure AD for identity management using SAML-based SSO:
AADSTS50105: Your administrator has configured the application SAP SuccessFactors Preview SSO to block users unless they are specifically granted ('assigned') access to the application. The signed in user 'xxx' is blocked because they are not a direct member of a group with access, nor had access directly assigned by an administrator. Please contact your administrator to assign access to this application.
Read more...
Environment
SAP SuccessFactors HCM Suite
Product
SAP SuccessFactors HXM Core 2111
Keywords
Reply URL faulty, Identity Provider, Azure, custom domain, AADSTS50011, SAML-based SSO, AADSTS50105, AssertionConsumerServiceURL, application <GUID>. Reply URL value in Azure AD , KBA , LOD-SF-PLT-IAS , Identity Authentication Services (IAS) With BizX , BC-IAM-IDS , Identity Authentication Service , LOD-SF-RMK-ICS , Internal Career Site Builder (CSB, IAS, etc ...) , How To
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.