SP Initiated SSO with Azure AD and Relay State iFrame Workaround

Johnsen, Thomas 1 Reputation point

We have successfully set up our Azure AD to interact with a SP initiated SSO that sends a Saml Token to the vendor for authentication allowing us to view their app. However, we need to be able to iFrame this vendor web app and I cannot find any clear cut documentation on how to implement a solution.

The main issue is that the login page for Microsoft cannot be placed in an iFrame. I see suggestions on opening that response in a popup, then redirecting back to the frame, but no clear examples or docs regarding how to manage each response or do this from client or server code.

When the url is input into a browser, it simply works, so there is no code in place that does anything special at the moment. So my question is:

  • What is the documented, microsoft recommended way, with a basic example, of how to workaround the login page not being allowed in an iframe when utilizing Azure AD for an SP initiated SSO w/Saml ?
Azure Active Directory
Azure Active Directory
An Azure enterprise identity service that provides single sign-on and multi-factor authentication.
14,652 questions
{count} votes