Tuesday, November 26, 2013

ADFS error: The Federation Service could not fulfill the token-issuance request.

After configuring an ASP.NET MVC application to use WIF and ADFS, authentication failed with the following error message:

The Federation Service could not fulfill the token-issuance request because the relying party 'https://localhost/ADFSSampleApp' is missing a WS-Federation Passive endpoint address.

Relying party: https://localhost/ADFSSampleApp

The problem was that I forgot to configure an endpoint address for the relying party configuration in ADFS. To do this, execute the following steps:

  • Open the ADFS Management snap-in
  • Go to the list of Relying Parties
  • Click on the application you want to configure.
  • Go to the properties and open the Endpoints tab
  • Add the URL of your web app

That should fix the problem…

No comments: