Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

AADSTS75011 Authentication method by which the user authenticated with the service doesn't match requested authentication method AuthnContextClassRef #20

Open
christianahug opened this issue Apr 11, 2023 · 1 comment

Comments

@christianahug
Copy link

Using Azure AD as IdP, I get the following error:

AADSTS75011: Authentication method 'X509, MultiFactor' by which the user authenticated with the service doesn't match requested authentication method 'Password, ProtectedTransport'.

This appears to be a problem with parameters passed by the SAML request.
https://learn.microsoft.com/en-us/troubleshoot/azure/active-directory/error-code-aadsts75011-auth-method-mismatch

Is this something that can be fixed?

pfSense Version & Package Version:

  • pfSense Version: 2.6.0
  • Package Version: pfSense SAML2 Auth v1.1.2

Identity Provider Information:

  • IdP Name: Azure AD
@Dedofugaz
Copy link

Dedofugaz commented Sep 9, 2023

Put this on the Advanced Settings, it should do the workaround that Microsoft recommends:
{"security": { "requestedAuthnContext": false } }
image

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants