Install Fiddler, Agree to the End User License Agreement.
Launch Fiddler, click Cancel if prompted about AppContainers:
With Fiddler open, click on Tools > Telerik Fiddler options > HTTPS and check Decrypt HTTPS traffic then click Ok.
Note: You may be prompted to trust a certificate. If so, please select the Cloud Service Root Certificate, available to download in Service > Network > SSL Interception > Root certificate.
Close and open Fiddler and Internet Explorer side-by-side. Then drag and drop the crosshair icon onto Internet Explorer. This will target only traffic in this process (browser window) to help filter down intercepted traffic:
On Fiddler, select the X icon with a drop down and click Remove All to clear your trace.
Go to the URL of the application where the issue is present and login. Once you have logged into the application or received the error to your application upon login, click File > Capture Traffic to stop the logs:
Within your logs, look for the last 200 response from your ADFS server or SAML endpoint URL before being redirected to your application.
Click on the Inspectors tab, and select the Raw tab at the bottom. Copy the value attribute from the hidden input tag with the name of "wresult":