Active Directory联合身份验证服务注销 [英] Active Directory Federation Services Logout

问题描述

我正在使用带有SAML的ADFS 3.0版本。 ADFS对用户进行身份验证，并向我发送SAML令牌。但是，当我使用此URL https：//aptifydev2.aptify从ADFS注销时。 com / adfs / ls /？wa = wsignout1.0 我无法注销。 ADFS向我显示您已成功注销，但是如果再次登录我的应用程序，则不会要求提供凭据。所有的AuthN请求和注销请求都使用证书签名。

I am using ADFS 3.0 version , with SAML . ADFS authenticates user and send me SAML tokens . But when I logout from ADFS using this URL https://aptifydev2.aptify.com/adfs/ls/?wa=wsignout1.0 I am unable to logout . ADFS shows me you are successfully logout but If I login my application again it does not ask for credentials . All AuthN request and Logout request are signed with certificate.

我可以看到浏览器中添加了 MSISSignoutProtocol cookie，这使我无法注销。请让我知道如何使ADFS中的单个会话过期。

I can see "MSISSignoutProtocol" cookie is added in browser which is preventing me from Logout.Please let me know how to expire individual session from ADFS.

推荐答案

好的讨论此处。

关键是，当您的应用收到wa = wsignoutcleanup1.0时，它需要清除自己的cookie。

The key is that when your app receives wa=wsignoutcleanup1.0, it needs to clear out its own cookies.

这篇关于Active Directory联合身份验证服务注销的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！