OAM Federation As SP Does Not Appear To Honor Maximum Sessions Set To 1

(Doc ID 2084152.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Identity Federation - Version and later
Information in this document applies to any platform.


When using OAM Federation as an SP with an external IdP, if the maximum sessions is configured as 1 OAM does not seem to honor the setting for Federation resources.  If multiple browsers are opened by a single user, that user can access Federation protected resources without having to reauthenticate (after the initial authentication).  Normally with maximum sessions configured to 1, when a second session is created, the first session is invalidated.


Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms