Using relaystat with SAML

Security

Hi all

I have a question about using relaystate with SAML when using Azure Ad B2C as the Idp
we successfully managed to integrate Splunk as SP with AD B2C as Idp using SAML and Custom policies
Now we want to redirect the users after successfull authentication to another url
the only way forward I could find was via the Relaystate parameter
below are all the combinations I tried for the Single Sign On (SSO) URL:

https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?SAML_Request=<base64_SAML_Auth_Request>&RelayState=https%3A%2F%2FredirectWebsite.com
https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?RelayState=https%3A%2F%2FredirectWebsite.com
https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?RelayState=https://redirectWebsite.com

I keep getting the error
error while parsing relaystate. failed to decode relaystate.

any advise on how to embed the relaystate in the SSO

Get Updates on the Splunk Community!

Using relaystat with SAML

login

SAML

SSO

Can’t make it to .conf25? Join us online!

Can’t Make It to Boston? Stream .conf25 and Learn with Haya Husain

Splunk Lantern’s Guide to The Most Popular .conf25 Sessions

Unlock What’s Next: The Splunk Cloud Platform at .conf25

Are you a member of the Splunk Community?

Using relaystat with SAML

login

SAML

SSO

Can’t make it to .conf25? Join us online!

Can’t Make It to Boston? Stream .conf25 and Learn with Haya Husain

Splunk Lantern’s Guide to The Most Popular .conf25 Sessions

Unlock What’s Next: The Splunk Cloud Platform at .conf25