Hi everyone,
I had posted about a question in Is it possible to configure connection to send request to requestable SSO urls in Okta app? before, but since it gets no reply, I will modify my question.
I have an Enterprise SAML connection. I would like to know is it possible to modify the SAML request to specify the ACS endpoint the Identity Provider to redirect to when authentication at the Identity Provider is successful? If so, may I ask the exact steps or details of how to do so?
By the way, the Identity Provider I try to integrate with now is Okta.
Best regards,
Lai
Hey @lai.ying.hui , we just released a feature that would let you specify AssertionConsumerServiceURL="@@AssertionConsumerServiceURL@@" in the SAML Request template. Can you check if that works for you? You will need to make sure that Sign Request toggle is turned on.
Example:
<samlp:AuthnRequest xmlns:samlp="urn:oasis:names:tc:SAML:2.0:protocol"
AssertionConsumerServiceURL="@@AssertionConsumerServiceURL@@"
ID="@@ID@@"
IssueInstant="@@IssueInstant@@"
ProtocolBinding="@@ProtocolBinding@@" Version="2.0">
<saml:Issuer xmlns:saml="urn:oasis:names:tc:SAML:2.0:assertion">@@Issuer@@</saml:Issuer>
</samlp:AuthnRequest>
2 Likes
Hey @thameera,
I tried out the example and it works for me! Thank you so much!
May I know is there any article about this new feature?
Great! This was just released, and a docs update will come within the next few weeks.
2 Likes
Thanks for helping on this one Thameera!