Jul 22 2021
- last edited on
Jan 14 2022
I have just setup SSO for a new enterprise application.
On AzureAD joined machines, it works in Chrome and Edge InPrivate mode. In normal edge, we get the following error:
AADSTS75011: Authentication method 'X509, MultiFactor' by which the user authenticated with the service doesn't match requested authentication method 'Password, ProtectedTransport'.
I have read about adding the following to SAML request but this is not possible with the vendor currently:
'authnContextClassRef' : false
This only affects AzureAD joined machines on Edge. When I test from a Hybrid joined machine there is no such issue.
Is there any way to resolve this from the Azure side?