Error AADSTS50011 with SAML authentication – The reply URL specified in the request does not match
Error AADSTS50011 with SAML authentication – The reply URL specified in the request does not match.
The AADSTS50011 error that happens during federated authentication with Azure Active Directory (Azure AD) is fixed in this article.
Symptoms
You receive error AADSTS50011
when trying to sign into an application that has been set up to use Azure AD for identity management using SAML-based SSO.
Error AADSTS50011 – The reply URL does not match the reply URLs configured for the application <GUID>. Make sure the reply URL sent in the request matches one added to your application in the Azure portal. Navigate to https://aka.ms/urlMismatchError to learn more about how to fix this.” when trying to sign into a SAML-based Single Sign-On (SSO) configured app that has been integrated with Azure Active Directory (Azure AD).
Cause
The AssertionConsumerServiceURL
value in the SAML request doesn’t match the Reply URL value or pattern configured in Azure AD. The AssertionConsumerServiceURL
value in the SAML request is the URL you see in the error.
Resolution
To fix the issue, follow these steps:
- Ensure that the
AssertionConsumerServiceURL
value in the SAML request matches the Reply URL value configured in Azure AD. - Verify or update the value in the Reply URL textbox to match the
AssertionConsumerServiceURL
value in the SAML request.
As an example, refer to the following article for detailed steps about how to configure the values in Azure AD:
- Tutorial: Azure AD SSO integration with Salesforce
Note
The reply URL is also known as Redirect URI. These values depend on what application is being used. You should get the values from the application vendor. After you update the Reply URL value in Azure AD and it matches the value that sent by the application in the SAML request, you should be able to sign into the application.
So, that’s all in this blog. I will meet you soon with next stuff. Have a nice day!!!
Guys please don’t forget to like and share the post. Also join our WindowsTechno Community and where you can post your queries/doubts and our experts will address them.
You can also share the feedback on below windows techno email id.
If you have any questions, feel free to contact us on admin@windowstechno.com also follow us on facebook@windowstechno to get updates about new blog posts.