I’m integrating a .NET framework web app with Auth0. It works fine using our test tenant with the default login.
However, we are having difficulties integrating a customer Auth0 tenant that utilizes Universal Login with a custom domain. There are currently 3 different login method allowed for the app: database, microsoft and ADFS.
If the app is configured to use the auth0 url (*.auth0.com) as the domain, database and microsoft authentication work but ADFS fails with the following:
Issuer (iss) claim mismatch in the ID token; expected “https://*.auth0.com/”, found “https://custom_url”.
If the configuration is switched to use the custom domain URL, ADFS works but database and microsoft authentication fail with the tokens flipped in the error message.
Issuer (iss) claim mismatch in the ID token; expected “https://custom_url”, found “https://*.auth0.com/”.
Where exactly is the configuration broken?