Active Directory联合身份验证服务注销 [英] Active Directory Federation Services Logout
问题描述
我正在使用带有SAML的ADFS 3.0版本。 ADFS对用户进行身份验证,并向我发送SAML令牌。但是,当我使用此URL https://aptifydev2.aptify从ADFS注销时。 com / adfs / ls /?wa = wsignout1.0 我无法注销。 ADFS向我显示您已成功注销,但是如果再次登录我的应用程序,则不会要求提供凭据。所有的AuthN请求和注销请求都使用证书签名。
I am using ADFS 3.0 version , with SAML . ADFS authenticates user and send me SAML tokens . But when I logout from ADFS using this URL https://aptifydev2.aptify.com/adfs/ls/?wa=wsignout1.0 I am unable to logout . ADFS shows me you are successfully logout but If I login my application again it does not ask for credentials . All AuthN request and Logout request are signed with certificate.
我可以看到浏览器中添加了 MSISSignoutProtocol cookie,这使我无法注销。请让我知道如何使ADFS中的单个会话过期。
I can see "MSISSignoutProtocol" cookie is added in browser which is preventing me from Logout.Please let me know how to expire individual session from ADFS.
推荐答案
好的讨论此处。
关键是,当您的应用收到wa = wsignoutcleanup1.0时,它需要清除自己的cookie。
The key is that when your app receives wa=wsignoutcleanup1.0, it needs to clear out its own cookies.
这篇关于Active Directory联合身份验证服务注销的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!