I've been attempting to configure SAML authentication via Okta to my Palo Alto Networks firewall AdminUI. After authentication, the PA provides me with:
SSO Response Status
Message: Empty SSO relaystate
I've tried configuring the relay state in Okta based upon information from several forum posts, online documentation about the relaystate parameter, and a "relaystate" generator. I've used everything from a single letter, to the PA URL, to a URL encoded version of the PA dashboard. Thoughts?