IDCS: ADFS Logout Endpoints issue when logging out from SSO federated app
(Doc ID 2393554.1)
Last updated on JUNE 16, 2018
Applies to:
Identity Cloud Service (IDCS) - Version N/A and laterInformation in this document applies to any platform.
Symptoms
Integration between IDCS , external IDP (ADFS) and SSO IDP initiated application / SAML application (such as Fusion Apps).
Apparently there is an issue with Logout endpoints for ADFS.
Use case:
1. Login into IDCS using ADFS and access myApps
2. Select any SSO/SAML configured apps (ex: FA - Fusion Apps).
3. This will redirect and logged-in to app selected (ex: FA - logged in because federation)
4. Click Logout from application ( ex: FA ) and confirm.
Expected result:
Open the ADFS login page successfully similar as for other external IDP (ex: google) or to have a non-error page.
Actual result:
Error ADFS page.
In Event Viewer of ADFS you may noticed errors as :
"Error message: MSIS7082: Unsolicited SAML logout response received."
Changes
Use of ADFS as external IDP for applications.
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Changes |
| Cause |
| Solution |
| References |