Set the sign-on policy you created as the default for the identity provider in the destination environment. Use a PUT {{apiPath}}/environments/{{destinationEnvID}}/signOnPolicies/{{policyID}} request to set default to true.

• Set {{policyID}} to the ID of the sign-on policy you created in a prior step.

Then execute the authentication flow:

1. Copy the Self-Service URL for the destination environment. The Self-Service URL is found on the Settings --> Environment --> Properties page.

2. Open a private browser window, and enter the Self-Service URL you copied.

3. Click the button that matches your SAML identity provider connection.

4. Authenticate as a user in the source environment. Depending on your configuration, you may need to perform account linking or user verification.

You should be able to sign on as a source environment user, indicating that authentication from the source environment to the SAML identity provider in the destination environment is working.