Using relaystat with SAML

Security

Hi all

I have a question about using relaystate with SAML when using Azure Ad B2C as the Idp
we successfully managed to integrate Splunk as SP with AD B2C as Idp using SAML and Custom policies
Now we want to redirect the users after successfull authentication to another url
the only way forward I could find was via the Relaystate parameter
below are all the combinations I tried for the Single Sign On (SSO) URL:

https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?SAML_Request=<base64_SAML_Auth_Request>&RelayState=https%3A%2F%2FredirectWebsite.com
https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?RelayState=https%3A%2F%2FredirectWebsite.com
https://<tenant-id>.b2clogin.com/<tenant-id>.onmicrosoft.com/B2C_1A_signup_signin/samlp/sso/login?RelayState=https://redirectWebsite.com

I keep getting the error
error while parsing relaystate. failed to decode relaystate.

any advise on how to embed the relaystate in the SSO

Get Updates on the Splunk Community!

Using relaystat with SAML

login

SAML

SSO

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Continue Your Federation Journey: Join Session 3 of the Bootcamp Series

Announcing Modern Navigation: A New Era of Splunk User Experience

Casting Call: Compete in Cyber Games

Join the Conversation

Using relaystat with SAML

login

SAML

SSO

Join the Splunk Community Slack to learn, troubleshoot, and make connections with fellow Splunk practitioners in real time!

Join Splunk User Groups to connect and learn in-person by region or remotely by topic or industry.

Continue Your Federation Journey: Join Session 3 of the Bootcamp Series

Announcing Modern Navigation: A New Era of Splunk User Experience

Casting Call: Compete in Cyber Games