Redirecting Identity Provider Initiated Logons for SAML Integration

You can configure identity provider (IdP) logons to automatically redirect users to a specific URL by including the next parameter in the URL.

Before You Begin

Create a URL for an identity provider (IdP) initiated flow. For instructions, see Creating URLs for SAML Interactions.

Procedure

1. Use URL encoding to encode the full URL that you will use in the next parameter.

   For example, the original URL is https://client.mydomain.com/adminconsole/. The encoded URL is https%3A%2F%2Fclient.mydomain.com%2Fadminconsole%2F.

2. Add the encoded URL to the next parameter: next=encoded_URL.

   For example, next=https%3A%2F%2Fclient.mydomain.com%2Fadminconsole%2F

3. Add the next parameter to the end of the URL that you created for the identity provider (IdP) initiated flow.

   Use an ampersand (&) between the URL and the next parameter.

   For example: http://client.mydomain.com:80/webconsole/samlAcsIdpInitCallback.do?samlAppKey=RUSAMPIxRDQ1N0EzNENF&next=https%3A%2F%2Fclient.mydomain.com%2Fadminconsole%2F.

   Note

   You can switch the positions of the next and samlAppKey parameters in the URL. For example, you can also use: http://client.mydomain.com:80/webconsole/samlAcsIdpInitCallback.do?next=https%3A%2F%2Fclient.mydomain.com%2Fadminconsole%2F&samlAppKey=RUSAMPIxRDQ1N0EzNENF.

Related Topics

Redirecting Service Provider Initiated Logons for SAML Integration