This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Weā€™re currently experiencing a high volume of support requests, which may result in longer response times ā€” thank you for your patience and understanding.
Community FAQ
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
ShowĀ Ā onlyĀ  | Search instead forĀ 
Did you mean:Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
ShowĀ Ā onlyĀ  | Search instead forĀ 
Did you mean:Ā 

Lansweeper Cloud SSO - IdP-Initiated

Dup-Account
Engaged Sweeper

ā€Ž07-18-2025 04:34 PM

New setup of Lansweeper Cloud. Configured SSO w/ Azure Entra. It works when logging in via the Lansweeper login page at us.lansweeper.com.

It does not work when launching from Azure My Apps. The Setup Lansweeper SSO KB specifically states you'll get an error if not enabling IdP-initiated Single Sign-on in the SSO configuration, but that enable/disable switch does not exist in my SSO configuration form.

I understand there were some recent changes, so maybe that's why, but it'd be great if someone could confirm and if so, is it safe to assume it's now enabled implicitly?

Also, in the Azure Entra configuration, there's a Sign on URL field that is optional. When we leave that empty, we get the error below. We leave that empty per the Azure Entra instructions provided in the KB named Configure Microsoft Entra ID (Azure AD) with Lansweeper SSO.

I'm guessing this because a Replay URL must accompany a Sign on URL, but any of the URLs we've tried in the Replay URL field do not net a successful login. 

{
  "error" : "invalid_request",
  "error_description" : "The request is missing a required parameter: redirect_uri",
  "error_reason" : "missing_redirect_uri"
}

Labels:
0 Kudos
4 REPLIES 4
jpayneofun
Engaged Sweeper II

3 weeks ago

 

ā€ƒI uploaded an example of the claim in Azure to help anyone else who may be struggling.

LansweeperClaimFix.png

0 Kudos
jpayneofun
Engaged Sweeper II

3 weeks ago

We experience the exact same error, which was resolved with the information below. There were two changes required for our organization [Disclaimer: Our config does not use IdP initiated SSO];
1. Add the sign on URL (optional) as https://app.lansweeper.com and...
2. Update the Attribute claim with a namespace.

For us, while the attribute claim use is emailaddress (default) the namespace field was empty causing SSO to fail. After Lansweeper SSO migration it appears that the Email Claim schema (found in Lansweeper SSO config) is required in the namespace field (Your Enterprise App > SAML > Attributes and claims).

0 Kudos
MikeLee24
Engaged Sweeper

ā€Ž07-21-2025 09:46 AM

Same issues here, had some issues that resulted in needing to recreate our cloud instance (not a big deal as it was only small). But can't see where that would apply.

0 Kudos
Dup-Account
Engaged Sweeper
In response to MikeLee24

ā€Ž07-21-2025 09:55 PM

They had me open a case. There are some known issues with IdP-initiated SSO since the migration.

0 Kudos

General Discussions

Find answers to technical questions about Lansweeper.

New to Lansweeper?

Try Lansweeper For Free

Experience Lansweeper with your own data.
Sign up now for a 14-day free trial.

Try Now