cancel
Showing results for 
Search instead for 
Did you mean: 

Azure MFA Cloud Integration with Pulse connect Secure via SAML

Highlighted
New Contributor

Azure MFA Cloud Integration with Pulse connect Secure via SAML

 

I am trying to integrate PCS with Azure AD  and Azure MFA via SAML protocol. 

 

I followed differnt guides available under community section. After configuration, when i am trying to logged in to my VPN url, it perform following action.

 

1. Asking User Name / Password.

2. Asking Azure Autehtnicator 

 

After entering token, it redirect to login page with below error.

 

You are not allowed to sign in. Please contact your administrator.

 

It also shows the sign in button on same page. Once i click onto the Signin page, following error appears and nothing happend. 

 

No Assertion Received. Please sign in again.

 

Any suggestion

 

5 REPLIES 5
Highlighted
New Contributor

Re: Azure MFA Cloud Integration with Pulse connect Secure via SAML

 

This URL shown under logs

 

no assertion received”

and  below url under logs

dana-na/auth/url_VyFWHoqWx4bxyILt/welcome.cgi?p=no-roles

Highlighted
Moderator

Re: Azure MFA Cloud Integration with Pulse connect Secure via SAML

@mfarhanbhatti  SAML authentication is working, however you're being denied because of no role mappings.

 

Configure role mapping under users >> user realms >> realm name >> role mapping >> new rule >> choose the condition (if - creteria, then - role).

 

FYI, clicking on sign-in again will not POST the SAML assertion (browser behavior - expected), hence you're receiving 'no assertion received' message.

PCS Expert
Pulse Connect Secure Certified Expert
New Contributor

Re: Azure MFA Cloud Integration with Pulse connect Secure via SAML

 

Role is already defined with specific username. However, i did some changes, after that new error appear while connecting to VPN.

 

SAML Transfer failed. Please contact your system administrator.

Detail: FAILURE: No valid assertion found in SAML response

 

 

 

 

 

Highlighted
Moderator

Re: Azure MFA Cloud Integration with Pulse connect Secure via SAML

Please update the logs that you see on the user access logs, which would be have the reason string attached to the SAML response error.

PCS Expert
Pulse Connect Secure Certified Expert
Highlighted
Moderator

Re: Azure MFA Cloud Integration with Pulse connect Secure via SAML

is that part of the initial attempt or is that the second attempt (which will not POST login data)?
what does the user access log show for failure reason?
what does the events log show for failure reason?
what does the policy trace show for failure reason?