Symantec Access Management

 View Only
  • 1.  RelayState truncated in SAML 2.0

    Posted Feb 03, 2017 08:17 AM

    Hi, 

    I am using CA identityMinder and SiteMInder in an infrastructure to protect a cloud application.

    I remarked that the relayState parameter sent to the service provider  is truncated.

    I saw in some old publications that to solve that I can try to URL-encode the relay state parameter https://www.ca.com/us/services-support/ca-support/ca-support-online/knowledge-base-articles.tec529287.html .

     

    I am a newbie on these CA products. I can't find out where I can change this configuration so the relaystate can be URL-encoded.

    Your help will be so valuable.

    Thanks.

    #idmandsiteminderintegration#saml_2.0



  • 2.  Re: RelayState truncated in SAML 2.0

    Posted Feb 03, 2017 09:13 AM

    Hi,

     

    The data in the RelayState parameter must be URL-encoded when SP sends the SSO request to IDP. Please find the sample example below.

    http://www.idp.demo/affwebservices/public/saml2sso?SPID=dp.demo&RelayState=http%3A%2F%2Fwww.spdemo.com%2Fapps%2Fapp.jsp

     

    Thanks,

    Sharan