How to Dynamic URL in SAML Federation
search cancel

How to Dynamic URL in SAML Federation

book

Article ID: 278628

calendar_today

Updated On:

Products

CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction


When running Federation Services, how to configure dynamic target URL in a SAML request?

 

Resolution


The Service Provider can be configured to send the Target URL as RelayState value, and configure the Identity Provider side to use the RelayState value instead of the Target URL.

As per the documentation, this feature allows to define dynamically the target URL (1):

    Relay State Overrides Target (SAML 2.0 only) (Optional) Replaces
    the target field value with the Relay State query parameter value
    in the request that initiates single sign-on. By selecting this
    option, you have more control over the target because using the
    Relay State query parameter lets you dynamically define the
    target.

The RelayState value should be URL-encoded.

 

Additional Information

 

  1. Target Application Configuration (SAML, WSFED)
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/using/administrative-ui/federation-partnerships-reference/application-integration-relying-party.html

 

Powered by Wolken Software