I'm trying to set up a IDP initiated SAML2 to Cisco Meraki, and tries
with this url:

In a unauthenticated session:
IDP saying "Session is authenticated" and not forwarding me to SP.

If the session is ipd authenticated:
IDP forwarding me to SP.

I have Kerberos as default contract.

So I think I need to use step-up authentication ?

I added Secure Form as Step-up Authentication.
Then I were directly prompted for login , and forwarded to SP.

But If i use any kerberos contract in Step-up , IDP says "Session is
authenticated" in unauthenticated sessions..

What have I done wrong ?

Best Regards

magnus's Profile: https://forums.netiq.com/member.php?userid=283
View this thread: https://forums.netiq.com/showthread.php?t=57795