AD FS - signout not always completing

-

we have problem users adfs session doesn't complete when log out.
the samlsession cookie still present in browser , when accessing site again not prompted login credentials.
usually when starting new login, access site, log out sequence first go through completes , signs out properly. when repeated session sticks. closing , restarting appears fix again.

tracking logout fiddler shows complete signout sequence has , post (done form submitted javascript), incomplete sequence returns "you have signed out" page.
the problem isn't browser specific - happens in chrome , ie.

incomplete logout - cookie cleared.

# result protocol host url body caching content-type process comments custom requestmethod
3 200 https sso.viopoc.com /adfs/ls/?wa=wsignout1.0 4,177 text/html; charset=utf-8 iexplore:12380 [#3] get
4 200 https sso.viopoc.com /adfs/ls/?wa=wsignout1.0 6,539 no-cache,no-store; expires: -1 text/html; charset=utf-8 iexplore:12380 [#4] post


incomplete logout - cookie not cleared

# result protocol host url body caching content-type process comments custom requestmethod
2 200 https sso.viopoc.com /adfs/ls/?wa=wsignout1.0 6,539 no-cache,no-store; expires: -1 text/html; charset=utf-8 iexplore:12380 [#2] get

the  only difference in 2 /adfs/ls/?wa=wsignout1.0 get requests incomplete request passes samllogout cookie - same value returned in first go through.

is cookie cause ? should code remove ?

john reidy sydney, australia

hi,

thanks post.

it looks query more related adfs feature part, our forum doesn’t focus on. dedicated support, suggest open new thread query in our adfs forum, understanding appreciated.

https://social.technet.microsoft.com/forums/windowsserver/en-us/home?forum=adfs&filter=alltypes&sort=lastpostdesc

the reason why recommend posting appropriately qualified pool of respondents, , other partners read forums regularly can either share knowledge or learn interaction us.

i have found 1 related article of adfs signout action, here link reference:

ad fs: how invoke ws-federation sign-out

http://social.technet.microsoft.com/wiki/contents/articles/1439.ad-fs-how-to-invoke-a-ws-federation-sign-out.aspx

thanks understanding.

best regards,

alvin wang

please remember mark replies answers if , unmark them if provide no help.
if have feedback technet subscriber support, contact tnmff@microsoft.com.




Windows Server  >  Directory Services



Comments

Post a Comment

Popular posts from this blog

Group Policy Event ID 1058 Error Code 1326 (The user name or password is incorrect)

-
i seeing odd error on 1 of our domain controllers. have dealt event id 1058 errors whereby policy (or policies) not replicating, receiving error along error code 1326 on server, , apparently happening default domain policy: log name:      system source:        microsoft-windows-grouppolicy date:          8/10/2015 3:09:54 pm event id:      1058 task category: none level:         error keywords:      user:          s-1-5-21-1484152634-2550175353-3916092219-3287 computer:      <dc name>.<domainname> description: processing of group policy failed. windows attempted read file http://schemas.microsoft.com/win/2004/08/events/event ">   <system>     <provi...
Read more

Suspicious event log Event ID: 4905

-
hi thr, could please me understand causing such event logs generate ? as  i understand, vssvc.exe pertains volume shadow copy used backup purpose.  we have third party application used taking backup of servers. the event longs generated following messages: 1) attempt made unregister security event source. 2) attempt made register security event source. these events not regular generated on random days. standard fields: date:               2013/10/19 time:               02:32:19 importance:         critical rule name:          security event monitored machine:  <domain controller> log format:         windows log name:           security event id:           4905 in work hours:      yes dynamic fields: internal timestamp: 2013/10/19 ...
Read more

DCOM received error "2147746132" from...

-
hi everybody, i have dc (my windows essentials 2012 server) , windows 2012 server in network.  the windows server 2012 inside domain. on server, got "non stopping" error says in event logs : ===> dcom received error "2147746132" fromd computer xxxx(my dc computer) while server trying activation : {6df8cb71-153b-4c66-8fc4-e59301b8011b} it never stops, got 11000+ new events :s i found : http://support.microsoft.com/kb/971153/fr i'm not sure should ? does got idea ? matthieu. hi, please try solution mentioned in below link: http://www.eventid.net/display-eventid-10006-source-dcom-eventno-272-phase-1.htm regards, cicely Windows Server  >  Windows Server 2012 General ...
Read more