Forums, Documentation & Knowledge Base - ComponentSpace

SP initiated SSO (ADFS) fails in IE11/Edge but works in Chrome and FF


https://componentspace.com/forums/Topic9458.aspx

By BH925 - 11/20/2018

We are using ComponenSpace SAML 2.0 Single Sign-On (SSO) Component for .NET 2.4.0.1 (for SAML 2.0 Specification) to integrate with ADFS as the IdP. To make a long story short, everything is fine with Chrome (70) and FF (63). However, with IE 11 and Edge, ADFS shows an error (event ID 303) with the description "Invalid length for a Base-64 char array or string", and in our logs we show a general error status:responder.
So I'd like to ask if anyone knows of what can cause ADFS errors when IE11 or Edge send the SAML request to ADFS, but when Chrome or FF send the request there is no error (the requests are the same).
Thanks in advance
By ComponentSpace - 11/20/2018

We haven't seen that in our testing with IE 11 and Edge.
Please contact [email protected] including the following:
1. Error details from the Windows event log on the ADFS server.
2. Fiddler .SAZ archive file of the SSO attempt using IE 11 or Edge.
3. SAML log file (https://www.componentspace.com/Forums/17/Enabing-SAML-Trace)
4. Confirmation of whether you have Windows integrated authentication for intranet users enabled in ADFS.