workspaces-issues icon indicating copy to clipboard operation
workspaces-issues copied to clipboard
verified publisher icon kasmtech

[Bug] - Issue with ADFS Saml authentication

Open problematiq opened this issue 1 year ago • 0 comments

After following the step by step setup for using SAML via ADFS, I get an "invalid_response: hxxps://Kasm-server.XXX/api/metadata/?id=XXXXXXX is not a valid audience for this Response" from Kasm via the web page.

Using debug tracing logs from ADFS I cannot see any issues, it's passing on the token just fine to the Kasm server. I could not find anything in the Kasm logs, even with debug turned on.

Web UI version: 1.14.0.32d10f

Workspaces Installation Method Single Server

Client Browser (please complete the following information):

  • OS: Windows 11
  • Browser Firefox, Edge

Workspace Server Information (please provide the output of the following commands): Linux XXXX 5.15.0-94-generic #104-Ubuntu SMP Tue Jan 9 15:25:40 UTC 2024 x86_64 x86_64 x86_64 GNU/Linux

PRETTY_NAME="Ubuntu 22.04.3 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04.3 LTS (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=jammy

Client: Docker Engine - Community
 Version:    25.0.3
 Context:    default
 Debug Mode: false
 Plugins:
  buildx: Docker Buildx (Docker Inc.)
    Version:  v0.12.1
    Path:     /usr/libexec/docker/cli-plugins/docker-buildx
  compose: Docker Compose (Docker Inc.)
    Version:  v2.5.0
    Path:     /usr/local/lib/docker/cli-plugins/docker-compose

74f9545ca2e5   kasmweb/nginx:1.25.1       "/docker-entrypoint.…"   4 days ago   Up 28 minutes             80/tcp, 0.0.0.0:443->443/tcp, :::443->443/tcp   kasm_proxy
09edcfc8b8d8   kasmweb/agent:1.14.0       "/bin/sh -c '/usr/bi…"   4 days ago   Up 28 minutes (healthy)   4444/tcp                                        kasm_agent
cf55a36e6792   kasmweb/share:1.14.0       "/bin/sh -c '/usr/bi…"   4 days ago   Up 28 minutes (healthy)   8182/tcp                                        kasm_share
80e4a4a93b81   kasmweb/kasm-guac:1.14.0   "/dockerentrypoint.sh"   4 days ago   Up 28 minutes (healthy)                                                   kasm_guac
8bc4bd2ff739   kasmweb/manager:1.14.0     "/bin/sh -c '/usr/bi…"   4 days ago   Up 28 minutes (healthy)   8181/tcp                                        kasm_manager
629e9f608b31   redis:5-alpine             "docker-entrypoint.s…"   4 days ago   Up 28 minutes             6379/tcp                                        kasm_redis
634a2effa161   postgres:12-alpine         "docker-entrypoint.s…"   4 days ago   Up 28 minutes (healthy)   5432/tcp                                        kasm_db
d24595b2996a   kasmweb/api:1.14.0         "/bin/sh -c '/usr/bi…"   4 days ago   Up 28 minutes (healthy)   8080/tcp                                        kasm_api

problematiq avatar Feb 13 '24 23:02 problematiq