<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Resolving Incorrect SAML RelayState Redirection to /app/UserHome
Dec 19, 2025
Single Sign-On
Okta Classic Engine
Okta Identity Engine
Overview

This article addresses a common issue that can arise during the configuration of a Secure Assertion Markup Language (SAML) RelayState. Instead of being redirected to the intended RelayState, users find themselves redirected to https://{OktaOrg}/app/UserHome.

Applies To
  • Secure Assertion Markup Language (SAML) RelayState
  • Trusted Origins Redirect
  • Single Sign-On (SSO)
Cause
The core of this issue is that the URL has not been set as a Trusted Origins Redirect. This results in the SAML RelayState being redirected incorrectly.
Solution

Configure the URL as a Trusted Origins Redirect. Follow these steps within the Okta Admin Console:

  1. Access the Okta Admin Console.
  2. Navigate to Security > API > Trusted Origins.
  3. Click Add origin.

API  

  1. Specify the base URL of the website from which cross-origin requests should be allowed.
  2. Ensure that Redirect is selected as a Type.

Add Origin  

  1. Click Save.

By correctly setting up the URL as a Trusted Origins Redirect, the SAML RelayState should now redirect users to the intended location.

 

Related References

Recommended content

Still looking for help?
Loading
Resolving Incorrect SAML RelayState Redirection to /app/UserHome