Issues with Logout Service to an ADFS Server
29 views
Skip to first unread message
Daniel
May 10, 2018, 5:00:55 PM5/10/18
to SimpleSAMLphp
What are you trying to do?
We are trying perform a logout, but it seems the session is still active, not sure if SP or IdP side is still active. When we logout it redirects to the ADFS Server and says you have been successfully signed out, but when we go back to the login page, it automatically logs back in to the previous user that was signed in before, the only way of performing a full logout is to close the browser, but we would like the log out service to work, to prevent this.
What have you done?
- We have tried to find more research in regards to this spending countless hours on forums, with no luck
- We have ensured the SSL certificate is installed on the ADFS Server and is readable by SimpleSAMLphp
- We have double checked all the correct settings in the config (if you require a copy to try an assist, I'm happy to provide it)
- We do get a SAMLResponse message in the header when it goes to the ADFS Server, so I assume the server isn't reading the message?
Any help would be much appreciated.
Dan
UDacquisitions
May 11, 2018, 4:41:52 PM5/11/18
to SimpleSAMLphp
Hi Dan,
We're having a very similar issue and I'm glad I came across this question.
One caveat for our setup: we are not getting the redirect to the ADFS server when we logout. So far, we've tested on a test site spun up on Drupal as well as through the SimpleSAMLphp interface with no luck on either. The worst part is when we take the logout URL and paste that into the address bar, it logs us out without any problem. I'm certain it's a configuration issue on our end but I don't know where to look for it. For our setup, I'm the only one working on this development and, even though I've spent a year working out the configuration, I'm still at a basic to intermediate understanding of what I need to do.
If anyone has any help to offer for Dan or myself, I would very much appreciate it. I can also provide any information regarding our configuration and setup if needed.
Thank you.
udacq
We're having a very similar issue and I'm glad I came across this question.
One caveat for our setup: we are not getting the redirect to the ADFS server when we logout. So far, we've tested on a test site spun up on Drupal as well as through the SimpleSAMLphp interface with no luck on either. The worst part is when we take the logout URL and paste that into the address bar, it logs us out without any problem. I'm certain it's a configuration issue on our end but I don't know where to look for it. For our setup, I'm the only one working on this development and, even though I've spent a year working out the configuration, I'm still at a basic to intermediate understanding of what I need to do.
If anyone has any help to offer for Dan or myself, I would very much appreciate it. I can also provide any information regarding our configuration and setup if needed.
Thank you.
udacq
mr.r...@gmail.com
Jul 7, 2018, 2:43:15 AM7/7/18
to SimpleSAMLphp
Hi Daniel, I am very new to php , (its not my platform, m just checking out) , and I want to implement a SAML2.0 with ADFS Login, I have an ADFS with me and working on it with .net and its completely done,
now I am moving to PHP to implement same thing but need help on it, can you provide me any sample code for ADFS integration.?
Peter Schober
Jul 7, 2018, 6:12:14 AM7/7/18
to SimpleSAMLphp
* mr.r...@gmail.com <mr.r...@gmail.com> [2018-07-07 08:43]:
software to use standard protocols.
The documentation covers much of that, so you'll need to ask specific
technical questions if things are unclear.
-peter
> now I am moving to PHP to implement same thing but need help on it,
> can you provide me any sample code for ADFS integration.?
There is no "code" for ADFS integration, you simply configure the
> can you provide me any sample code for ADFS integration.?
software to use standard protocols.
The documentation covers much of that, so you'll need to ask specific
technical questions if things are unclear.
-peter
Reply all
Reply to author
Forward
0 new messages