AzureAD access denied error: unknown platform with conditional access policy
mcmessina opened this issue · 0 comments
I receive an error in the authentication process after processing my auth credentials correctly (pages with 200 status codes are being loaded after these values are processed). After some redirects, I receive the error: "reached an unknown page within the authentication process provider=AzureAD".
I ran the command DUMP_CONTENT=true saml2aws login --verbose to view the logs. The first 403 status code includes the message "User tried to log in to a device from a platform (Unknown) that's currently not supported through Conditional Access policy. Supported device platforms are: iOS, Android, Mac, and Windows flavors."
Is there a workaround for this error? In other words, could we spoof or modify the platform in this AzureAD authentication process so that it appears as a supported device platform? If there is no workaround and I am limited by my corporate Conditional Access policy (which I do have the ability to modify), what should I include in a request to modify this Conditional Access policy?
saml2aws version: 2.36.13
saml2aws config details:
- provider = AzureAD
- url = https://account.activedirectory.windowsazure.com