This topic has 1 reply, 2 voices, and was last updated 1 year, 1 month ago by Jatinder Singh.

  • Author
  • #28009


    We have a SAML app integrated and we would like to achieve below.

    * User access App URL which is integrated with openam as a SAML connection
    * Authentication fails , user should be redirected to a html page on Authentication failure

    where we can specify the URL per SAML connection not applying this to whole realm.


     Jatinder Singh

    I am not sure if a redirect behavior on authentication failure is supported per the spec. According to the SAML2 spec, a response need to be returned with statuscode if a responder (AM) is unable to authenticate the presenter. That said, you may be able to achieve this behaviour by employing authentication trees. A ForgeRock verified SAML2 Node is available in the marketplace. You can define an auth tree such that a negative SAML2 Node outcome sets a FailureURL.

    Hope this helps!

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2021 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?