I am trying to integrate PCS with Azure AD and Azure MFA via SAML protocol.
I followed differnt guides available under community section. After configuration, when i am trying to logged in to my VPN url, it perform following action.
1. Asking User Name / Password.
2. Asking Azure Autehtnicator
After entering token, it redirect to login page with below error.
You are not allowed to sign in. Please contact your administrator.
It also shows the sign in button on same page. Once i click onto the Signin page, following error appears and nothing happend.
No Assertion Received. Please sign in again.
This URL shown under logs
no assertion received”
and below url under logs
@mfarhanbhatti SAML authentication is working, however you're being denied because of no role mappings.
Configure role mapping under users >> user realms >> realm name >> role mapping >> new rule >> choose the condition (if - creteria, then - role).
FYI, clicking on sign-in again will not POST the SAML assertion (browser behavior - expected), hence you're receiving 'no assertion received' message.
Role is already defined with specific username. However, i did some changes, after that new error appear while connecting to VPN.
SAML Transfer failed. Please contact your system administrator.
Detail: FAILURE: No valid assertion found in SAML response
Please update the logs that you see on the user access logs, which would be have the reason string attached to the SAML response error.