SAML SP Close session after redirect to IDP

Question

Hello all!&nbsp;
I have an F5 configured as SP for an external IDP vendor.
Under certain VPE conditions (after the client has authenticated with SAML), the user may hit a Redirect Ending with the option "Close session after redirect" selected.&nbsp;
In fact, this option close the session on the F5, but do not close it on the IDP.
In consecuence, if the user hit the VS again, the SAML session on the IDP is still valid and the login prompt won't show up.&nbsp;
Any ideas to close the session on both sides?&nbsp;
Thanks!&nbsp;

marfex · Answer

If someone get this issue. The F5 is able to close the session because it saw a logout hit ... even if the IDP do not confirm the logout (independent of POST or Redirect).

In my case, the IDP had a certificate matching problem asertions for logout. After they fix that, everything worked out.

Forum Discussion

SAML SP Close session after redirect to IDP

Recent Discussions

Help needed with iRule (connection closed log )

AS3 Limitations

Use of SSL Decryption.

VLAN Failsafe Functionality

FTP PASV mode to Extended Passive mode

Related Content

Ending an APM session when browser tab is closed

Help with upstream prematurely closed!

APM - Close Browser

TLS Stateful vs Stateless Session Resumption

iRule Interference: Custom Closes and Responses

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS