FileCloud SSO Stuck After Redirect with Microsoft 365 GCC High (Entra ID)

Original Question or Issue:

When configuring SAML Single Sign-On (SSO) between FileCloud (Hosted) and a Microsoft 365 GCC High (Azure/Entra ID) tenant, users may experience an issue where authentication redirects successfully but then hangs or fails to complete login.

Environment:

• Product - FileCloud Online
• Version - 23.261
• Platform -  Linux

Steps to Reproduce:

Error or Log Message:

No explicit error message is displayed during the issue.

Observed behavior includes:

• User is successfully redirected from Microsoft Entra ID back to FileCloud

• The login process hangs or does not complete

• Browser may appear stuck without any visible error

Defect or Enhancement Number:

Cause:

The issue was caused by inconsistencies and minor misconfigurations in the SAML setup between FileCloud and Microsoft Entra ID (GCC High), which prevented the authentication flow from completing successfully.

Resolution or Workaround:

To resolve the SSO hanging issue when integrating FileCloud with Microsoft Entra ID (GCC High), apply the following steps:

1. Correct IdP Attribute Mapping

Ensure the attribute mappings in FileCloud exactly match the claims sent by Entra ID:

• Username → http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name

• Email → http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

• First Name → http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

• Last Name → http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

2. Ensure Entity ID Consistency

Verify that the IdP Entity ID is set correctly and consistently:

https://sts.windows.net/<tenant-id>/

Avoid mixing different endpoint formats, as this can cause SAML validation failures.

Notes: