Hello,
I'm configuring an application to utilize organizational authentication for an Azure AD tenant. I am getting an error: "ID4148: The Saml2SecurityToken is rejected because the SAML2:Assertion's NotOnOrAfter condition is not satisfied."
According to this article: TimeSkew Fix you can set a timeskew in the web.config of your application? I cannot locate where this setting resides in the web.config
I have also read you can set the timeskew server side using powershell, becuase there is no setting for this in the standard Azure AD management console, does anyone know how to set the TokenIssuanceNotBeforeSkewInMinutes in an Azure AD tenant?
Thanks