We set up a SAML connection for users to SSO into their organization. Upon IDP-initiated login, they are redirected to the generic login page.
Organizations are not supported for IdP-initiated SAML flows yet. This feature is on the roadmap.
To work around this, depending on your use case, you may be able to configure your application to detect the users who had not logged in with an organization context (e.g. via validating tokens ), and attempt a silent authentication with the relevant Organization parameter in place to get tokens in that context.