We have just upgraded from SonarQube 10.4.1 to 2025.1 LTA, we have hit issues with the new SAML configuration which is blocking our Microsoft accounts to login to SonarQube. When running the SAML configuration test we get the below error:
I have checked and we definitely have user.userprinciplename & user.displayname set in Attributes & Claims
Hello!
If you’re using Microsoft Entra for SAML, your claims (and the values you’ll use in your SonarQube configuration) should typically follow the schema format, such as https://schemas.xmlsoap.org/ws/2005/05/identity/claims/..., rather than a simplified form like user.userprincipalname` (which is probably the value you set Microsoft-side)
The official SQ documentation on configuring SAML authentication with Entra lays this out pretty well.
This should have worked the exact same in 10.4.1, but at the very least it’s what you need to be doing now.
Hi Colin,
Thanks for the quick response, we have resolved this now.
In the Microsoft Entra it had appended an extra /login & /name as you can see below:
