+ Start a Discussion
Ricki ReayRicki Reay 

How to redirect to homepage when signing into Salesforce Lightning (Console App) via Azure SSO?

Hi there,

I am trying to set up my org's SSO (which is done through Azure (IDP)) so that users are always brought to the Salesforce Home tab, rather than the last tab or record they were on. My organization uses Financial Services Cloud and work within the Retail Banking Console application. Users are able to authenticate their login through Azure, using their Microsoft credentials, to access Salesforce.

I have been reading some articles about updating the ReplyURL and RelayState in Azure, however I have not had any luck in getting this working.

Can anyone provide any guidance, insight or resources that would allow for me to ensure users are always brought to the home page once they have successfully authenticated and are logged into Salesforce?

Thanks in advance,

Ricki
AbhishekAbhishek (Salesforce Developers) 
Hi,

Please feel to reach out to the accelerator team who can give you the idea of how you can implement according to your business requirement if you have the premier success plan.

Please find the details on how to request for an accelerator:https://help.salesforce.com/articleView?id=000337601&type=1&mode=1

Otherwise, I would request you to reach out to your Account Executive If you wish to upgrade to Premier Support please contact your Account Executive.

I hope you find the above information is helpful. If it does, please mark as Best Answer to help others too.

Thanks.
Ricki ReayRicki Reay
Hi Abhishek,

Thank you for the prompt response. This is what I was told by Salesforce as well, but unfortunately the organization I am working for on this does not have Premier Support at this time (I have instructed them to reach out to their AE to inquire about one-off Premier Support). 

Just to follow up with one more quick question: do you have any insight on whether or not this functionality would be possible? When I posted to a Microsoft Azure forum, the specialist responded saying "For your scenario, you can check if salesforce can send the homepage URL in the request using AssertionConsumerServiceUrl attribute. If they can send it then you should be able to add this value in the Single-sign-on settings blade from Azure Portal."

No worries if you are unable to answer, but just thought I would ask to ensure it is worth pursuing the Premier Support route further.

Thanks again - I very, very much appreciate your insight.

Ricki
AbhishekAbhishek (Salesforce Developers) 
I am assuming Salesforce is integrated with Azure AD using the SAML protocol. In this scenario, Azure AD normally sends the assertion/ SAML token to the reply URL configured in Azure AD.

SP can send a custom URL to Azure AD in the SAML request as well using the attribute: AssertionConsumerServiceUrl . This has to match the reply URL field and you can have more than one Reply URL configured in Azure AD.

For your scenario, you can check if salesforce can send the homepage URL in the request using AssertionConsumerServiceUrl attribute. If they can send it then you should be able to add this value in the Single-sign-on settings blade from Azure Portal.

Ref: https://docs.microsoft.com/en-us/azure/active-directory/develop/single-sign-on-saml-protocol#authnrequest

User-added image


I hope you find the above information is helpful. If it does, please mark as Best Answer to help others too.

Thanks.