Hi Naveen

Did you upgarde encryption module?

after that did you try upgrading SSO connection settings and reimporting metadata file again?

Hi,

After upgrading, this behavior is usually related to SSO not being set as the default authentication flow, so the app falls back to the standard /login.html.

Since SSO works when you manually append it, your configuration is mostly correct — the missing part is automatic redirection.

What’s happening

• User hits / (app URL)
• Mendix shows default login page
• SAML flow is only triggered when explicitly called

So you need to force the app to start SSO automatically.

1. Set SSO as default via Anonymous user + redirect

• Enable Anonymous users
• Set Home Page (Anonymous role) → Microflow

In that microflow:

• Call the SAML login action (e.g. SSO_Login or module login microflow)

This ensures:

• Any unauthenticated user is immediately redirected to SSO

2. Verify SAML module configuration

Check in SAML settings:

• Correct IdP configuration
• Default IdP is selected (if multiple)
• Assertion Consumer URL is correct

3. Check RequestHandler registration

Make sure SAML is mapped correctly, typically:

/SSO/

Test:

/SSO/login

4. Do NOT rely on index.html changes

Changes in index.html won’t reliably control authentication flow in Mendix.

Redirection should be handled via:

• Microflow
• SAML module configuration

5. Optional: Disable default login page

If you don’t want /login.html at all:

• Do not expose it in navigation
• Force all entry via SSO microflow

Quick check

If this works:

https://yourapp/SSO/login

but / does not → then it’s purely a missing redirect configuration.

Your SSO setup is correct, but automatic login is not configured. The standard approach is to enable anonymous users and redirect them via a microflow to the SAML login, which ensures seamless SSO without manually modifying URLs.