2091967 - [SSO] Deep Link Redirection to Login Page from Email Notifications

This KBA provides an overview of SSO (Single Sign-On) deep links and explains why links in email notifications may redirect users to the SuccessFactors login screen.

SAP SuccessFactors HXM Suite 

SuccessFactors supports deep links, but a few important steps need to be followed to make sure they work properly.

SSO deep links can be used by various SuccessFactors modules, depending on the functionality. System-generated email notifications may include these links, directing users to specific pages.

When a user clicks on a deep link from an email notification, they are expected to be redirected to the SuccessFactors page. However, for this to work correctly, the following condition must be met:

• The user must already be logged into the organization's internal portal from where the SSO authentication starts.
• Technically, this means there must be an active session in the same browser where the link is being accessed.

If no active session is detected in the browser, the system will redirect the user to the "Deeplink IDP Login Redirect" URL configured in the SSO configuration.

If this redirect URL is not configured, the user will be taken to the default SuccessFactors login page, which acts as the fallback or session timeout URL. 🔗 Check how to configure the URL in the KBA 2091975 - Deeplinks within E-mail Notifications are not functional while on SSO

It is strongly recommended to configure customers "Internal SSO URL" (from where the SSO authentication starts) in the Deeplink IDP Login redirect so that whenever there is no active session while accessing the link in notification, users will be redirected to the internal SSO link which will trigger users to authenticate themselves and creates a session required.

• 2278269 - [SSO] Default Redirect URL's for Single Sign On - SAP for Me
  
• 2091975 - [SSO] Deeplinks within E-mail Notifications are not functional while on SSO - SAP for Me
• 2768478 - [SSO] How to change redirect URLs for Single Sign On - SAP for Me

Deep link, Deeplink, Login page, SSO, Redirect, Redirected, Send to, Went to, Login screen, “Deeplink IDP Login redirect", SF, Platform, Email notification , KBA , LOD-SF-PLT-SEL , SSO Errors & Logs , LOD-SF-PLT-SAM , SAML SSO First Time Setup , How To

SAP SuccessFactors HCM Suite all versions ; SAP SuccessFactors Platform all versions