Ad Widget

Collapse

Azure AD SAML Error

Collapse
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • rrspyder
    Junior Member
    • Oct 2013
    • 8
    #1

    Azure AD SAML Error

    I am trying to setup SAML with Azure AD SSO. I tried both of these guides:

    We’ll be back soon!
    https://www.zabbix.com/forum/zabbix-help/402079-microsoft-adfs-saml-idp-and-zabbix-5-0-guideline

    We’ll be back soon!
    https://www.zabbix.com/forum/zabbix-cookbook/421153-zabbix-saml-with-azure-ad


    However the error I get is:

    AADSTS75011: Authentication method 'X509, MultiFactor' by which the user authenticated with the service doesn't match requested authentication method 'Password, ProtectedTransport'. Contact the Zabbix application owner.

    Anyone else run into this and know the fix?

    Thanks.
    Tags: None
    • Markku
      Senior Member
      Zabbix Certified SpecialistZabbix Certified ProfessionalZabbix Certified Expert
      • Sep 2018
      • 1782
      #2
      I've seen that as well, the workaround for me was using another browser. I don't know what caused that.

      Please let us all know if you figure that out.

      Markku

        Comment

        • falkoz
          Junior Member
          • Mar 2021
          • 2
          #3
          Hi,
          I solved the problem.
          Cause: you use modern authentication methods like sign in with a mobile app or WHfB (Windows Hello for Business) instead of a password. The library OneLogin's SAML PHP Toolkit checks the value authncontext by default, which is completely unnecessary.

          Solution: You can deactive the check as described here in advanced settings: 3 Authentication (zabbix.com)

          Go to /usr/share/zabbix/conf/zabbix.conf.php
          Replace
          Code:
          $SSO['SETTINGS']
          with
          Code:
          $SSO['SETTINGS'] = [
'security' => [
'requestedAuthnContext' => false
]
];
          Restart Zabbix
          Last edited by falkoz; 06-01-2022, 16:10.
            👍 1

            Comment

            Previous template Next
            Working...