Jump to content
View in the app

A better way to browse. Learn more.
FMForums.com

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Linux and AD-FS -"Authentication Failed"

SupportGuys89
in FileMaker Server 19 (Linux)

Featured Replies

Hello Fellow FM'ers!

We have been testing Linux and everything has been great, but we are having issues with the authentication via web direct using Windows Federated Services. We followed the steps in the available documentation "Addendum4_ADFS.pdf" and also used "ExtendOAuth_v1.pdf" to get the AD-FS rules configured as well as the necessary admin console requirements (Client Key, Shared Key etc...) We do see the following on attempting to login to our solution:

1565807540_ScreenShot2021-04-09at10_36_06AM.png.5d23ac6fbbae80d77bca76212bee1475.png

 

And when we click on the AD FS Option we do receive a login prompt from our Federated Services:

 

1422557026_ScreenShot2021-04-09at10_31_48AM.thumb.png.4caf79003f016c62be20fb964ba9e0a3.png

 

However, even with the correct credentials we still see the following error message:

281780230_ScreenShot2021-04-09at10_32_05AM.thumb.png.720141d8948d90d50c1212a12bb0b150.png

 

We have reviewed the logs within AD-FS and no errors are reported and the credentials are passed as expected. Within our solution and Active Directory, we also ensured the user is in the correct group to access our solution via webdirect. I will gladly provide more details into the configuration of AD-FS or FM Admin Console, but these all match the documentation provided by Claris. 

We went a bit further and got an inhouse developer to take a look and test the flow and he was able to confirm the following:

The JWT had a unique_name, an email, and a groups array with one of the values in that group array being the group that is set up in the Filemaker solution.
 
With that said, we are not sure what the next step would be to test this as we appear to be seeing all the correct information in our testing yet we still are not being "authenticated" in our solution. I have also opened a ticket with FIleMaker and no luck as of yet. Any insight would be greatly appreciated!

 

    • Like 1
    • 6 months later...
    • Newbies

    I have setup a  lab to test this also and have the same results

    please post if you get an answer or solution

     

    Create an account or sign in to comment

    https://fmforums.com/topic/107766-linux-and-ad-fs-authentication-failed/
    Go to topic listing

    Similar Content

    Important Information

    By using this site, you agree to our Terms of Use.

    I accept

    Configure browser push notifications
    Chrome (Android)
    1. Tap the lock icon next to the address bar.
    2. Tap Permissions → Notifications.
    3. Adjust your preference.
    Chrome (Desktop)
    1. Click the padlock icon in the address bar.
    2. Select Site settings.
    3. Find Notifications and adjust your preference.