If an explicit goto URL parameter is not specified, a Distributed Authentication UI server attempts to redirect to the goto on a success URL specified in Access Manager. This redirect can fail for these reasons:
The URL is relative, and no corresponding page is available at the Distributed Authentication UI server
The URL is absolute, and the browser cannot reach the URL.
Workaround: Always specify an explicit goto URL parameter for a Distributed Authentication UI server.