Citrix ADC: AADSTS20012 Error with SAML AUTH

Did you ever received an “AADSTS20012: An error occurred when we tried to process a WS-Federation message. The message was invalid.” error while trying to logout your SAML authenticated ICA / StoreFront session? Somebody stated, there are bugs in the ADC firmware, but the solution is quite simple … really!

Just enter your SAML Server configuration and set the ‘Logout Bindung’ to ‘Redirect’ rather than the ‘Post’ default settings found in many articles out there. That’s it, you’re fine!

Leave a Reply