My Oracle Support Banner

OCI Identity Cloud Service (IDCS) - ADFS (Active Directory Federation Service) 'ERROR message: MSIS7082: Unsolicited SAML logout response received' (Doc ID 2393554.1)

Last updated on NOVEMBER 03, 2023

Applies to:

Identity Cloud Service (IDCS) - Version N/A and later
Information in this document applies to any platform.

Symptoms

Integration between IDCS , external IDP (ADFS) (Active Directory Federation Service) and SSO IDP initiated application / SAML application (such as Fusion Apps).

Apparently there is an issue with Logout endpoints for ADFS.

Use case:
     1. Login into IDCS using ADFS (Active Directory Federation Service) and access myApps
     2. Select any SSO/SAML configured apps (ex: FA - Fusion Apps).
     3. This will redirect and logged-in to  app selected (ex: FA - logged in because federation)
     4. Click Logout from application ( ex: FA ) and confirm.

Expected result:
     Open the ADFS login page successfully similar as for other external IDP (ex: google) or to have a non-error page.

Actual result:
     Error ADFS (Active Directory Federation Service) page.
     In Event Viewer of ADFS you may noticed errors as follows:
     

  "Error message: MSIS7082: Unsolicited SAML logout response received."

Changes

Use of ADFS (Active Directory Federation Service) as external IDP for applications.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.