IBM Verify

IBM Verify

Join this online user group to communicate across Security product users and IBM experts by sharing advice and best practices with peers and staying up to date regarding product enhancements.

 View Only

  • 1.  SAML LOgout is not working

    Posted Fri August 21, 2020 12:23 PM
    Hello all

    I am able to access mobile demo app using SAML but Single logout is not working , any suggestion why request and response is not coming?
    Although it is logging out correctly.
    Logout URL configured is https://www.iamlab.ibm.com/FIM/sps/Safenet/saml20/slo

    ------------------------------
    Anant Aggarwal
    ------------------------------


  • 2.  RE: SAML LOgout is not working

    Posted Fri August 21, 2020 12:40 PM
    Anant,

    How are you triggering the Single Logout?  The URL you've shown above is the SLO endpoint but that is not for triggering SLO.
    Calling /pkmslogout won't trigger SLO either.

    You probably need to call something like:
    https://www.iamlab.ibm.com/FIM/sps/Safenet/saml20/sloinitial?RequestBinding=HTTPRedirect

    What happens if you call this URL?

    Jon.

    ------------------------------
    Jon Harry
    Consulting IT Security Specialist
    IBM
    ------------------------------

    Original Message


  • 3.  RE: SAML LOgout is not working

    Posted Sun August 23, 2020 09:58 PM
    Hi Anant and Jon,

    Fyi, https://www.ibm.com/support/knowledgecenter/SSPREK_10.0.0/com.ibm.isva.doc/config/reference/profileinitialurls.htm#profileinitialurls__slo_init_URL SAML2 SLO init url format could be found in this KC doc.

    Best Regards

    Chen Yongming

    ------------------------------
    Yongming Chen
    ------------------------------

    Original Message


Related Content