SSO Sp initiated login failing on Summer 13 MYDomain sandbox orgs
Last updated 2014-01-07 ·Reference W-1651385 ·Reported By 14 users
SSO Sp initiated login failing on Summer 13 MYDomain sandbox orgs.
The SAML Assertion Consumer Service URL is using the
My Domain prefix rather than test.salesforce.com.
This is causing IDP's to reject the SAML Request because of a mismatch in the Assertion Consumer Service URL.
Sample SAML Request in SSO SP initiated flow (from Salesforce to the IDP)
If it is crucial to have SSO working again in summer 13 sandbox org, update the AssertionConsumerServiceURL in your IDP settings to match what is sent by Salesforce.
This will have to be changed back again once the fix is released. Recommendation is to wait till the fix is released.
Is it Fixed?
Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.