We have set up an OKTA SAML 2.0 App for federation with Siteminder. So when someone hits the OKTA Federation URL, it creates a siteminder session. my question is how do we create a dynamic relaystate URL? So the use case is: a user needs to access a Siteminder protected URL, but we want them to go through OKTA. So I thought that we can do: <OKTA FEDERATION URL>/sso/saml?RelayState=<USER REQUESTED URL>. When the user clicks on this URL, they're redirected back to the originally requested URL (relay state), but there does not seem to be a valid SM session created through OKTA. If they click on only the OKTA Federation URL, the SM Session is created just fine. Any help would be greatly appreciated.
This is the correct method to add the relay state parameter. If a session is failing to be created, this is likely an issue with some other aspect of the SAML configuration or with the service provider, and so confirming the functionality is supported and enabled by the service provider may be required.