<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Troubleshooting Okta Logout Redirects Using the fromURI Parameter
Apr 29, 2026
Okta Classic Engine
Okta Identity Engine
Administration
Overview

Okta logout redirects using the fromURI parameter fail when the parameter contains incorrect capitalization or when the redirect URL lacks the proper Trusted Origin and OpenID Connect (OIDC) configurations. Resolving this involves ensuring exact case sensitivity for the parameter and adding the URL to the Trusted Origins and application settings. When attempting to use the https://<oktaOrgUrl>/login/signout?fromURI=<redirected_logout_url> endpoint, the redirect functionality fails to send the user to the specified URL, instead routing them to the default application or sign-in widget.

Applies To
  • Okta Identity Engine (OIE)
  • Okta Classic Engine
  • Logout Redirects
  • OpenID Connect (OIDC)
Cause

One of the following configuration issues causes the redirect to fail:

  • The fromURI parameter contains incorrect capitalization.
  • The Okta Admin Console lacks the redirect URL domain in the Trusted Origins configuration.
  • The OIDC application lacks the redirect URL in the Logout redirect URIs.

 

Solution

How are Okta logout redirects configured using the fromURI parameter?

 

To ensure the fromURI parameter successfully redirects users after logging out of Okta, verify the parameter casing, configure the Trusted Origins, and update the application logout settings by following these steps:

  1. Type the fromURI parameter with exact case sensitivity in the logout URL.
    https://<oktaOrgUrl>/login/signout?fromURI=<redirected_logout_url>
    NOTE: The fromURI parameter is strictly case-sensitive.
  2. Navigate to Security, and then select API in the Okta Admin Console.
  3. Select the Trusted Origins tab.
  4. Add the domain of the redirect URL and ensure the status is active.
  5. Navigate to Applications, and then select Applications.
  6. Select the OIDC application.
  7. Add the redirect URL to the Logout redirect URIs configuration.

 

How is a global custom sign-out page configured?

To set a default custom sign-out page for the entire Okta organization, update the customization settings by following these steps:

  1. Navigate to Settings, and then select Customization in the Okta Admin Console.
  2. Locate the Sign-out Page section.
  3. Enter the desired logout URL.

Recommended content

Still looking for help?
Loading
Troubleshooting Okta Logout Redirects Using the fromURI Parameter