I am configuring my AAD B2C to allow sign-in with a SAML Identity Provider by following this guide: https://learn.microsoft.com/en-us/azure/active-directory-b2c/identity-provider-generic-saml
I checked Assertion consumer service from the samlp AuthnRequest but it is giving me an error:
AADB2C90031: Policy 'B2C_1A_TrustFrameworkBase' does not specify a default user journey. Ensure that the policy or it's parents specify a default user journey as part of a relying party section.
How can I specify a DefaultUserJourney in my TrustFrameworkBase policy when it is in my Relying Party Policy File?
Am I suppose to move it to the base policy? I anticiate this will have issues because my Relying Party values are dependent on my Extension policy, and these dependencies are not found in the Base policy.
I searched a similar question here in SO but it is already not found: https://stackoverflow.com/questions/78116975/aad-b2c-saml-sso-configure-assertionconsumerservice
You've used the wrong policy name in a URL somewhere, most likely in the metadata URL(s).
You'll have this URLs somewhere: https://<your-tenant-name>.b2clogin.com/<your-tenant-name>.onmicrosoft.com/B2C_1A_TrustFrameworkBase/samlp/metadata?idptp=<your-technical-profile>
It should use the relying party policy name, the one that your relying parties/service providers will reference when they make authorization requests to B2C. For example, if I had a relying party policy named B2C_1A_SignInSignUp then my metadata URL would be: https://<your-tenant-name>.b2clogin.com/<your-tenant-name>.onmicrosoft.com/B2C_1A_SignInSignUp/samlp/metadata?idptp=<your-technical-profile>