Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1589
Views
10
Helpful
1
Replies

cucm sso with adfs 4

Go to solution
shloki193
Level 1
Level 1

‎12-01-2020 03:56 AM

Hi guys

 

trying to configure Saml SSO with ADFS 4 ( winServer 2016) on CUCM 12.5

used the Link below in the configuration process :

https://www.cisco.com/c/en/us/support/docs/unified-communications/unified-communications-manager-callmanager/211302-Configure-Single-Sign-On-using-CUCM-and.html

and this link too:

https://www.cisco.com/c/en/us/td/docs/WEM-Location-en_US/voice_ip_comm/cucm/SAML_SSO_deployment_guide/12_5_1/cucm_b_saml-sso-deployment-guide-12_5/cucm_b_saml-sso-deployment-guide-12_5_chapter_01.html

 

tried it on ADFS 2 - worked like a charm

tried it on ADFS 4 - got he next error:

 

The Federation Service could not fulfill the token-issuance request. More than one claim based on SamlNameIdentifierClaimResource was produced after the issuance transform rules were applies for relying party 'url here'.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
shloki193
Level 1
Level 1

‎12-02-2020 12:46 AM

Hi Guys

found the solution

 

under the customer's ADFS the Claim provider trust field was mapping my request to the LDAP so that the
Sam-accountname led to the Windows account name

that created a duplicated request

View solution in original post

1 Reply 1

Go to solution
shloki193
Level 1
Level 1

‎12-02-2020 12:46 AM

Hi Guys

found the solution

 

under the customer's ADFS the Claim provider trust field was mapping my request to the LDAP so that the
Sam-accountname led to the Windows account name

that created a duplicated request

Customers Also Viewed These Support Documents