Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Session deleted due to user logout request?

nland_178813
Nimbostratus
Nimbostratus

‎22-Dec-2014 09:30 - last edited on ‎02-Jun-2023 11:17 by Fog

Hello. I currently have SAML authentication set up, and it works well most of the time. However, I keep getting the following sporadically:

2014-12-22 13:20:35 
Received User-Agent header: Mozilla%2f5.0%20(Windows%20NT%206.1%3b%20WOW64%3b%20rv%3a31.0)%20Gecko%2f20100101%20Firefox%2f31.0.

2014-12-22 13:20:35  
Received client info - Type: Mozilla Version: 5 Platform: Win7 CPU: WOW64 UI Mode: Full Javascript Support: 1 ActiveX Support: 0 Plugin Support: 1

2014-12-22 13:20:35    
New session from client IP x.x.x.x (ST=/CC=/C=) at VIP x.x.x.x Listener /Common/SAML_SP (Reputation=Unknown)

2014-12-22 13:20:35    
\N: Session deleted due to user logout request.

2014-12-22 13:20:35    
Following rule 'fallback' from item 'SAML Auth' to ending 'Deny'

2014-12-22 13:20:35    
Access policy result: Logon_Deny

2014-12-22 13:21:16    
Session statistics - bytes in: 2036, bytes out: 818

The other thing is, if I try to authenticate directly after that, I will be able to do so successfully. I'm not sure why the session is deleted due to 'user logout request'. Any ideas as to what is happening?

Labels:
0 Kudos
6 REPLIES 6

Michael_Jenkins
Cirrostratus
Cirrostratus

‎26-Dec-2014 14:29

Are you saying the BIG-IP is the IdP or the SP in this instance? (Is the application authenticating against the F5 or is the F5 authenticating against a different identity provider?)

 

And what does your policy look like in the VPE? Doing any checks that may be failing for some reason?

 

0 Kudos

Angel_Sosa_Veri
Nimbostratus
Nimbostratus

‎27-May-2017 17:09

Have you received answer to this issue? How did you resolve it?

 

0 Kudos

Vinne73_96575
Nimbostratus
Nimbostratus

‎24-Sep-2018 05:50

Is there any news on this? I have the same problem.

 

My BigIP/APM is a SAML SP. I use Shibboleth as IdP. This works 99% of the time. The other 1 procent gives errors. Browsers might show the error "Invalid nonce"

 

What my logs show:

 

apmd[13185]: 01490266:7: /Common/UA:UAnet:1f3c043d: ApmD.cpp: 'process_apd_request()': 1815: ** done with the request processing ** tmm[19269]: 01490501:5: /Common/UA:UAnet:1f3c043d: Session deleted due to user logout request.

 

Which is not true, the user did not ask for a logout.

 

0 Kudos

Vinne73
Cirrus
Cirrus

‎24-Sep-2018 05:50

Is there any news on this? I have the same problem.

 

My BigIP/APM is a SAML SP. I use Shibboleth as IdP. This works 99% of the time. The other 1 procent gives errors. Browsers might show the error "Invalid nonce"

 

What my logs show:

 

apmd[13185]: 01490266:7: /Common/UA:UAnet:1f3c043d: ApmD.cpp: 'process_apd_request()': 1815: ** done with the request processing ** tmm[19269]: 01490501:5: /Common/UA:UAnet:1f3c043d: Session deleted due to user logout request.

 

Which is not true, the user did not ask for a logout.

 

0 Kudos

youssef1
Cumulonimbus
Cumulonimbus

‎24-Sep-2018 06:20

Hi,

 

Can you tell me if users that encounter this kind of behaviour use MacOS or IOS?

 

I already encounter this kind of behviour with this users....

 

regards,

 

0 Kudos

Ford_Prefect
Cirrus
Cirrus
In response to youssef1

‎12-Feb-2021 06:57

Hi,

 

Could you please share your experience in solving this issue as I have the same problem with iOS 13 user session. I don't even have SAML, just AD Auth user lockout loop that breakes on the second iteration with "Session deleted due to user logout request"?

0 Kudos
Copyright © 2023 Khoros, LLC