SAML 2.0 authentication with ADFS:

1. Ensure that a localhost certificate is installed in the client’s Local Machine. This certificate needs to be trusted to avoid browser warnings. Take note of the certificate’s thumbprint (ex: d7a045f8xxxxxxxxb9702066b88bbecf)

2. Open Command Prompt with elevated permissions and run (ex. for port 8443):

   1. netsh http add sslcert ipport=0.0.0.0:8443 certhash= d7a045f8xxxxxxxxb9702066b88bbecf appid={C183BFDB-31C2-49AE-A3ED-BEA979A269C6}

where appid identifies OneStream Windows application.

3. If an error is returned run: netsh http delete sslcert ipport=0.0.0.0:8443 then rerun : netsh http add sslcert ipport=0.0.0.0:8443 certhash= d7a045f8xxxxxxxxb9702066b88bbecf appid={C183BFDB-31C2-49AE-A3ED-BEA979A269C6}