I’m trying to setup third party login on our Ironwood installation of Open edX with our ADFS system.
On the LMS, after I click the sign in button and select our school, I am taken to our ADFS login page. I authenticate to the ADFS system and am returned to our Open edX platform with an error at the top of the page reading:
An error occurred when signing you in…
Authentication failed: SAML login failed: [‘invalid_response’] (Signature validation failed. SAML Response rejected)
In the LMS system logs I can see the SAML request and response. After reading the error message, I used https://www.samltool.com/validate_response.php to validate the response. SAMLTool indicated that it was a valid response.
Any ideas where I could go next or why Open edX would feel that this is an invalid response?