locked
ADFS - Single Logout over Claims Provider Trust RRS feed

  • Question

  • Hi,

    We have two ADFS endpoints (IdP), I'll call them here:
    login.corp1.com
    login.corp2.com

    We have a Claims Provider Trust (CPT) from login.corp1.com to login.corp2.com

    We have applications federated with both IdP:s.
    For applications that are federated with login.corp1.com we can then login with accounts from both IdP:s.

    We have Single Logout (SLO) configured and it works for each Idp individually, but it does not transfer over the CPT.
    If I login to application App1, federated with login.corp1.com, and App2, federated with login.corp2.com, with the same account, user@corp2.com from login.corp2.com, it works fine to login with SSO. But if I logout from App1, I get logged out only from the App1 application and not from App2. So SLO does not trigger a logout over the CPT to login.corp2.com.

    What is needed to get that SLO to work over the CPT?

    Kind regards,
    Andreas


    AN






    Wednesday, July 24, 2019 5:34 PM