SAML SP Close session after redirect to IDP

Question

Hello all!&nbsp;
I have an F5 configured as SP for an external IDP vendor.
Under certain VPE conditions (after the client has authenticated with SAML), the user may hit a Redirect Ending with the option "Close session after redirect" selected.&nbsp;
In fact, this option close the session on the F5, but do not close it on the IDP.
In consecuence, if the user hit the VS again, the SAML session on the IDP is still valid and the login prompt won't show up.&nbsp;
Any ideas to close the session on both sides?&nbsp;
Thanks!&nbsp;

marfex · Answer

If someone get this issue. The F5 is able to close the session because it saw a logout hit ... even if the IDP do not confirm the logout (independent of POST or Redirect).

In my case, the IDP had a certificate matching problem asertions for logout. After they fix that, everything worked out.

Forum Discussion

SAML SP Close session after redirect to IDP

1 Reply

Recent Discussions

F5 Rseries R2600 Tenant sizing

iRule help masking IBM host URL/URI

Need advise to setup a policy on F5

Advise on setting up IRULE

Help with URL Masking

Related Content

Ending an APM session when browser tab is closed

Help with upstream prematurely closed!

Anchor Link Redirect

Agility sessions announced

iRule Interference: Custom Closes and Responses