The following error is seen in the FWSTrace.log while trying to process an incoming authnrequest:
Denying invalid request with both AssertionConsumerServiceURL and AssertionConsumerServiceIndex attributes set
Per the SAML specifications, either the AssertionConsumerServiceURL OR AssertionConsumerServiceIndex attribute may be included, but not both.
The Service Provider must alter the SAMLRequest value so that it contains only one of these attributes.
OASIS document for SAML 2.0 specifications:http://docs.oasis-open.org/security/saml/v2.0/saml-core-2.0-os.pdf
Was this information helpful?