Problem: AADSTS50107: The requested federation realm object 'https://ucs-sso.domain.de//simplesamlphp/saml2/idp/metadata.php' does not exist

Knowledge Base Community
, , ,
#1

Problem:

During login to office 365 you face this error message:

AADSTS50107: The requested federation realm object ‘https://ucs-sso.domain.de//simplesamlphp/saml2/idp/metadata.php’ does not exist.

The error on the MS login page is usually an indicator that the Powershell script the wizard generates has not been executed successfully on a Windows PC

Investigation:

You can check the Federation settings via powershell.
It should show the azure DNS domain as federated:

Connect-MsolService
Get-MsolDomain
Get-MsolDomainFederationSettings -DomanName <azure-dnsdomain>

Solution

  • If the the domain is not shown as federated, open the batch script created by the UMC Office365 Setup wizard and execute each command manually in a powershell session.

  • If it shown as federated, but you get this error anyway, you can also execute each command manually in a powershell session. After that clear your browser cache.

  • If the powershell script failes make sure inn Azure Active Directory admin center beneath Custom domain names the domains show up as verified and the UCS domain not as primary.

Problem: AADSTS50107: The requested federation realm object 'https://ucs-sso.domain.de/simplesamlphp/saml2/idp/metadata.php' does not exist in multi AD Scenario
Howto: Re-Initialize O365 After Certificate Change
Office 365 connector Kontotypen
#2
Mastodon