WE are getting this error below when users who have been migrated to Office 365 try to sign in using SSO:
So, surprisingly some users can sign in to Office 365 with no error and others get this error below. UPN is all set correctly for those users and I verified that I can update user's property on premise and it is synched to the cloud.
I have to note that I had issues with federating domains and had to remove the relaying trust on ADFS server and then add second domain using the switch –SupportMultipledomain.
I verified that both test accounts from both domains were able to signin to Office 365. But now we have more users and most of them are not able to sign in and get this error:
Below are the steps I performed on ADFS server to enable support for multiple domains:
Update-MsolFederatedDomain –DomainName “domain.com” –SupportMultipledomain
Convert-MsolDomainToFederated –DomainName “newdomain.com” –SupportMultipledomain
Did not do anything on Proxy servers....
I am going to try to re-run the ADFS wizard on all ADFS proxies.
Please let me know your thoughts. I am also seeing some errors on the DirSync log, but as I said NO issue with syncing updates.
Below is the error:
This doesn't look like a valid user ID. Make sure you typed the user ID assigned to you by your organization. It usually looks like email@example.com or firstname.lastname@example.org.
Close Support Information