Bug: SAML Connector shows different Audience URI than actual SAML Issuer

Forum - Software
1

Description:
In the help box in SAML Connector setup screen, eramba displays the Audience URI / SP Entity ID as:

https:///saml/saml-connectors/get-metadata

However, during Microsoft Entra ID SAML login, the SAML AuthnRequest uses this identifier instead:

https:///samlConnectors/getMetadata

Microsoft Entra rejected the login because the displayed Audience URI did not match the actual Issuer sent by eramba.

Impact:
Low, maybe confusing

Version: Eramba Enterprise v. 3.29.1

2

The issue here is that not all IdPs are able to use that URL. Entra needs to use a different one, as you mentioned.

There is a video in the documentation that shows the correct URL, but I agree this is still not very clear and can be confusing. We will review the documentation and see how we can improve it to avoid confusion.

1 Like