RelayState URL configuration in SSO IDP Federation Partnership
search cancel

RelayState URL configuration in SSO IDP Federation Partnership

book

Article ID: 248366

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Federation (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction


Is there a way to configure "RelayState URL" from SSO IDP Federation Partnership settings?

 

Environment


All the supported - Policy Server and CA Access Gateway Environments.

 

Resolution


Note that the "RelayState URL" is a constructed URL and there's any parameter or settings to configure from the Federation Partnership. The Partner needs to include a RelayState URL while sending the request.

Note also that this RelayState indicates the URL of the target resource at the Service Provider (SP) and the RelayState value should be URL-encoded (1).

 

Additional Information

 

  1. Identity Provider-initiated SSO (POST or artifact binding)
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/configuring/legacy-federation/configure-a-saml-2-0-identity-provider/initiate-single-sign-on-from-the-idp-or-sp.html#concept.dita_a0fdfaa41746f2ce271ae227c905d3d4009aa275_IdentityProviderinitiatedSSOPOSTorartifactbinding