OAM Federation Acting as a Service Provider (SP) Does Not Timeout requests Based on the SAML Assertion Validity Set by the Identity Provider (IDP) (Doc ID 2263506.1)

Last updated on DECEMBER 11, 2017

Applies to:

Oracle Access Manager - Version 11.1.2.2.2 and later
Oracle Identity Federation - Version 11.1.2.0.0 and later
Information in this document applies to any platform.

Symptoms

When OAM Federation is acting as a service provider (SP) it does not timeout requests (force user re-authenticate) based off of the SAML assertion validity times set by the identity provider (IDP).

For example, a remote IDP sends the following SAML response:

However, the user's session is not timing out at the defined time (2017-04-05T19:59:51Z in the above example). OAM is timing out the session based on OAM setup for session timeout which defaults to 8 hours.

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

OAM Federation Acting as a Service Provider (SP) Does Not Timeout requests Based on the SAML Assertion Validity Set by the Identity Provider (IDP) (Doc ID 2263506.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!