If provided, this parameter must match the RedirectUri of the cloud service in Azure AD. Azure AD expects a DateTime value of this type, but doesn't evaluate or use the value. This is a DateTime string with a UTC value and round-trip format ('o'). ID must not begin with a number, so a common strategy is to prepend a string like 'id' to the string representation of a GUID.
A sample SAML 2.0 AuthnRequest could look like the following example: Īzure AD uses this attribute to populate the InResponseTo attribute of the returned response. To request a user authentication, cloud services send an AuthnRequest element to Azure AD. For more information on other ways to handle single sign-on (for example, by using OpenID Connect or Integrated Windows Authentication), see Single sign-on to applications in Azure Active Directory. This article discusses using SAML for single sign-on.
