Forum Discussion

Massimo_Ruscian's avatar
Massimo_Ruscian
Icon for Nimbostratus rankNimbostratus
Jan 16, 2019

APM: how configure logout user session

Hi, I have 3 different web applications behind a BigIP VS which does Kerberos authentication. I need to understand how terminate user sessions on all three of the applications when a user logs out fr...
application delivery
BIG-IP Access Policy Manager (APM)
Massimo_Ruscian's avatar
Massimo_Ruscian
Icon for Nimbostratus rankNimbostratus
Jan 22, 2019

Hi, I performed other test.

 

Scenario N.1 - Login only on SERVICE-A -

 

When I do the logout from SERVICE-A the browser was correctly redirected to the url

 

I can see into the APM log the session correctly disconnected: info tmm[18552]: 014d1704:6: /Common/multi_sp.access.profile_v1.3:Common:407a1a3a:SAML SSO: Successfully verified SAML message signature notice tmm[18552]: 01490501:5: /Common/multi_sp.access.profile_v1.3:Common:407a1a3a: Session deleted due to user logout request.

 

Scenario N.2 - Login on SERVICE-A and SERVICE-B -

 

When I do the logout from SERVICE-A the browser was correctly redirected to the url but after perform a GET on I can see into the APM log the session redirected to SERVICE-B with the Assertion.

 

Any Idea on I can fix the issue?

 

Thanks to all.