Share via

Azure SSO authentication is not redirecting to application destination instead it takes to the application landing page

Ramesh K 0 Reputation points
2023-08-22T18:13:23.0266667+00:00

Hello,

We have recently updated our Application internal users to authenticate via Azure AD SSO. Users are not being taken to the expected destination when they try it open from email links.

Example: Users usually get the Appian task links in their emails. The expected behavior should redirect the users to the Appian task upon successful authentication instead it is taking to the Appian home page.

We had the similar issue when we had ADFS AD AML before Azure implementation. We had to change the Sign in URL link on the login page to https://adfs.dot.gov/adfs/ls/idpinitiatedsignon.aspx?loginToRp=entityId and that worked taking the users to the exact destination. I am finding hard time to look up the similar attributes “idpinitiatedsignon.aspx?loginToRp=” to append it the Azure login URL.

Did someone experience like this? Any suggestions or help on this will be much appreciated.

Thanks!

Microsoft Security Microsoft Entra Microsoft Entra ID
0 comments

2 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. James Hamil 27,211 Reputation points Microsoft Employee Moderator
    2023-08-23T20:52:27.6566667+00:00

    Hi @Ramesh K , one possible solution is to ensure that the redirect URI in your Azure AD application registration is configured correctly.

    If you still face issues, you might want to check the Azure AD Application Proxy settings and ensure that the internal URL includes all the relevant links for the application. Additionally, you can consider using custom domains to publish your applications, which allows the same URL to be used both internally and externally.

    If these options don't resolve the issue, you can explore enabling inline link translation using Intune Managed Browser, My Apps extension, or the link translation setting on your application. For more information on redirecting hardcoded links for apps published with Azure AD Application Proxy, you can refer to this guide.

    If this still doesn't work please let me know and I can help you further.

    If this answer helps you please mark "Accept Answer" so other users can reference it.

    Thank you,

    James

  2. Ramesh K 0 Reputation points
    2023-08-24T20:59:20.13+00:00

    Hello James,

    Thank you for responding. These are the setting we have it saved for our application.

    Reply URL(Assertion Consumer Service URL) is currently saved as https://oursite/saml/AssertionConsumer

    Logout URL : https://oursite/saml/LogoutConsumer

    Relay State : null

    Sign on URL : https://oursite

    Do you see any thing that is saved incorrectly especially Reply URL and Relay State.

    Thank you,

    Ramesh

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.