Solved

SSO issue from Safari browser

Posted on 2014-03-12
5
1,404 Views
Last Modified: 2014-12-22
We have an issue with SSO from accessing through Safari on MAC. From inside we are never prompted with logon page or logon popup from ADFS server. From Outside using Safari on Mac OS X – Login page loads, but after entering credentials and clicking “Sign In” it returns you back to the login page. On other browsers (IE and Firefox) SSO is working from outside and inside and we get the prompt.

Please advice

THank you.
0
Comment
Question by:claudiamcse
  • 3
  • 2
5 Comments
 
LVL 39

Accepted Solution

by:
Vasil Michev (MVP) earned 500 total points
ID: 39923637
Check for cookies/scripts being blocked, etc. Common issue with non-IE browsers is Extended Protection for Authentication, scenario 3 from this article:

http://support.microsoft.com/kb/2461628

I'd stick to IE with anything AD FS related.
0
 

Author Comment

by:claudiamcse
ID: 39923844
Does windows Authenticatioin Need to be enabled on both directories?

•Default Web Site/adfs
•Default Web Site/adfs/ls

I have Windows Authentication enabled only on this directory:

Default Web Site/adfs/ls

It says that you need to turn off Extended Protection on both directories but I would have to enable then Windows Authentication on this dir first:
Default Web Site/adfs
0
 
LVL 39

Expert Comment

by:Vasil Michev (MVP)
ID: 39923869
Only do this for the /adfs/ls one. And as mentioned in the article, it's not really a recommended solution, so even if it solves the issue you should have that in mind.
0
 

Author Comment

by:claudiamcse
ID: 39923962
Ok. Thanks! I did on both directories just in case and disabled Exended Protection according on that article...but still not working on the Safari.

WE are getting this error on Safari.
Error: Too many redirects occurred trying to open sts.domain.com/adfs/ls
0
 

Author Closing Comment

by:claudiamcse
ID: 40513347
Yes. Thank you. The issue was related to the Safari Browser.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
Find out what you should include to make the best professional email signature for your organization.
This lesson covers basic error handling code in Microsoft Excel using VBA. This is the first lesson in a 3-part series that uses code to loop through an Excel spreadsheet in VBA and then fix errors, taking advantage of error handling code. This l…
how to add IIS SMTP to handle application/Scanner relays into office 365.

896 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now