Enabling Identity Federation with AD FS 3.0 and Amazon AppStream 2.0

At the bottom of the blog there is a few steps that are commonly missed for AD FS 3.0 under "Enable RelayState and forms authentication".

What is the exact error message you are getting?

You can use a browser extension, like SAML-tracer to capture the SAML message. Are you seeing the correct attributes and values? Can you paste a redacted copy of the SAML summary?

The part about the "Enable RelayState and forms authentication" has been configured in all parts. It's an error message that returns ADFS server(error id 364 AD FS), does not allow me to login into the application. SAML tracer does not return any error. The RelayState URL at which point I built it on the example shown in the AS2 setup page(Enabling Identity Federation with AD FS 3.0 and Amazon AppStream 2.0). Is there any other way to get it? In the url I also checked the characters paid attention to the key sense. Thanks

Attributes seem correct, I try to recheck.

Here is an error from the SAML-tracer:
HTTP/1.1 302 Found
Content-Length: 0
Content-Type: text/html; charset=utf-8
Location: https://xxxxxxxxxxxxxxxxxxxxxxx:443/adfs/ls/idpinitiatedsignon?client-request-id=xxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxx
Server: Microsoft-HTTPAPI/2.0
P3P: ADFS doesn't have P3P policy, please contact your site's admin for more details
Set-Cookie: MSISSamlRequest=; expires=Sun, 27 Mar 2022 10:29:04 GMT; path=/adfs
MSISAuthenticated=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx==; path=/adfs; HttpOnly; Secure
MSISLoopDetectionCookie=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx==; path=/adfs; HttpOnly; Secure

Here instead an error of AD FS: Microsoft.IdentityServer.Service.IssuancePipeline.CallerAuthorizationException: MSIS5007: The caller authorization failed for caller identity DOMAIN\user for relying party trust https://signin.aws.amazon.com/saml.

Thanks in advance for any suggestions or help