This article has been archived and is no longer maintained by ForgeRock.
SLO fails to redirect the user to the RelayState URL after logging out and instead displays the default.jsp page (IdP or SP initiated single logout succeeded). This occurs in the following situations:
- IdP initiated SLO using SOAP binding
- All SP initiated SLO using the Fedlet.
The RelayState URL is incorrectly validated and then ignored.
In some cases RelayState validation removes the metaAlias from the endpoint URL and RelayState cannot be validated, as it is not possible to determine the hosting entity.
This issue can be resolved by upgrading to OpenAM 11.0.1 or later; you can download this from BackStage.