How to pass parameter from RP to IDP in passive flow?

Anand AV 96 Reputation points
2021-02-11T12:28:52.927+00:00

Hi

We have multiple client's IDP federated with our ADFS 4.0 server.
A user click login from web application (RelyingParty ) then redirected to ADFS's IDP selection page and redirected to there respective IDP page.

Now my question is how to pass RelyingParty identifier("https://webapp.mycompany.net") to IDP.
I see wtrealm has the RPI but when ADFS redirects the request to IDP it changes the value to it's own identifier(http://sts.mycompany.net/adfs/services/trust)

Can some one please help me on this?.

Thanks.

Microsoft Security | Active Directory Federation Services
0 comments No comments
{count} votes

Accepted answer
  1. Anand AV 96 Reputation points
    2021-02-17T06:06:35.233+00:00

    The following command pass "wctx" from RP->ADFS->IDP

    • Set-AdfsWebConfig -ContextCookieEnabled 0

    Source: https://nzpcmad.blogspot.com/2014/09/adfs-joys-of-hiden-context.html

    0 comments No comments

1 additional answer

Sort by: Most helpful
  1. Pierre Audonnet - MSFT 10,191 Reputation points Microsoft Employee
    2021-02-14T22:34:16.473+00:00

    When using the IDP Initiated Flow for your application, you can use the LoginToRp query string to skip the drop down menu selection. For example:

    https://sts.contoso.com/adfs/ls/IdpInitiatedSignon.aspx?LoginToRP=https://webapp.mycompany.net
    

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.