oza1p (oza1p) asked a question.
How to redirect to specify requestable SSO Urls using ACS index or ACS URL after after authentication successfully
I configure Okta App with dirrerent requestable SSO urls, and in SAML request how to provide requestable sso url to redirect on specific urls.
Image is not available
- Please see above image for my okta application with configure different different SSO URLs in Requestable SSO URLs configuration but not any idea how to use above requestable url or index used in my request to redirect to specific url after login successfully.
- i read okta SSO configuration document but not specify how to use ACS index or ACS URL in request to redirect on specific sso url.
Hi Ankit,
This is Marius with Okta support. The multiple requestable SSO URLs are for use in SP-initiated sign-in flows. Select this option to configure multiple ACS URLs to support applications capable of choosing where the SAML Response is sent. Specify an index or URL to uniquely identify each ACS URL endpoint. If an AuthnRequest message does not specify an index or URL, the SAML Response is sent to the default ACS URL specified in the Single sign on URL field.
If you're still encountering issues in configuring the custom SAML app, I would advise you to create a support ticket with us so we can discuss this more thoroughly.
Thank you,
Marius Dinu
Okta T2 TSE
The same issue which ankit has been posted i have one application and i am sign in from web and mobile (hybrid) app i want to redirect basis on passing URLwhile i am sign in means how to pass request able sso URL or its index which help me to redirect the given URL .
Please give me ans with its example so i can easily understand.
Hi Marius Dinu,
Below is my okta sso url.
{BaseURL}/sso/saml?RelayState=xyz&redirect_uri={url}
@oza1p (oza1p) Did you figured out how to actually send ACS URL or Index? If you did, do you mind sharing?
Hi Ankit,
I ran across this post while looking for a way to utilize the Requestable SSO URLs and I thought I might reply with what I learned in case any one else stumbles across this post as well.
In short, if you are reading this, chances are you can't make use of these URLs. To use these URLs, either the application natively supports this (refer to your application's documentation), or you are the developer of the application (refer to the SAML protocol specification).
If the application already supports this feature you probably aren't looking at this post. The documentation of the application you are using will tell you how to configure the URLs in Okta and the index numbers in the application. You would just enter the correct index number(s) into the SAML configuration of the application, the correct URLs into Okta and things work.
If you are the developer of the web application you probably aren't looking at this post either. You will be looking at the SAML Protocol specification, Assertions and Protocols for the OASIS Security Assertion Markup Language (SAML) V2.0 (opens new window), and referring to the AssertionConsumerServiceIndex Optional Attribute that you can include in the AuthnRequest as follows.
AssertionConsumerServiceIndex[Optional]
I hope this helps anyone else that finds this.