Support for SAML-Based Single Logout (SLO)
Unified CM supports SAML-based Single Logout (SLO). The SLO allows you to log out simultaneously from all sessions of a browser that you have signed in using Single Sign-on (SSO).
SLO does not close all the running sessions at the same time. For example, if there are four sessions running in two different browsers, the sessions associated with the browser that initiates the log out is closed. The sessions that are associated with the other browser are still open.
The following IdPs (Identity Providers) support Single Logout:
-
OpenAM 10.0.1
-
F5 BIG-IP 11.6.0
-
Okta 2017.38
-
Microsoft Active Directory Federation Services idPs 2.0 (AD FS 2.0). To Log out using Microsoft Active Directory Federation Services idPs 2.0, configure the logout URL in the idp.xml file.
Note |
The PingFederate 6.10.0.4 IdP does not support Single Logout. |