During the last several days, we have been experiencing O365 login error. The error is as below.
Sorry, but we're having trouble signing you in
Please try again in a few minutes. If this doesn't work, you might want to contact your admin and report the following error: 80041317.
After debugging the issue, we have identified this is common issue for federated user tries to sign in to a Microsoft cloud service such as Office 365, Microsoft Azure, or Microsoft Intune from a sign-in webpage whose URL starts with "https://login.microsoftonline.com/login," authentication for that user fails.
This issue occurs when the configuration settings of the federated domain for the on-premises Active Directory Federation Services (AD FS) service and for the Azure Active Directory (Azure AD) authentication system are mismatched. This causes the claim that the AD FS service supplies to be malformed and therefore rejected by the Azure AD authentication system.
You could also follow the instruction here to review the ADFS error. Microsoft has publish the detailed procedure how to fix the issue. Here is the summary of the fixes. You could select the way you prefer.
- Method 1: Update the configuration of the federated domain
- Method 2: Repair the configuration of the federated domain
- Method 3: Manually update the attributes by using the Azure Active Directory Module for Windows PowerShell
At this time, we are not sure the reason why this issue sometimes come up and would like to find out the way to monitor and prevent this happens in the future.