Share via

Is there an option to Clear Azure SSO Session without closing the browser ?

M, Senthil Kumar 1 Reputation point
2021-01-22T15:18:30.36+00:00

I have enabled SSO for SAAS application and wanted to implement Logout , While doing this i observed that Azure SSO Session is still active in browser though i redirect the user to https://login.microsoftonline.com/common/wsfederation?wa=wsignout1.0.

I wanted to clear the session on the browser itself and when the user tries to login on the same browser it should prompt for login with credentials and i dont want seamless login. Please assist what should be the best approach to achieve this.

Thanks
Senthil

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,866 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Marilee Turscak-MSFT 34,786 Reputation points Microsoft Employee
    2021-01-22T22:16:51.363+00:00

    Hi Senthil,

    You will want to implement single sign-out, which will sign the user out of the tenant and the application. If you use SAML based single sign-out then the application will send the SAML Logout POST Request to Azure AD and then Azure AD can logout the user and redirect back the user to another page as specified in the request.

    https://learn.microsoft.com/en-us/azure/active-directory/develop/single-sign-out-saml-protocol

    Another possible option is to use session frequency using Conditional Access. Then you could set "never persist" for the browser and set the sign-in frequency to something small like one hour.

    https://techcommunity.microsoft.com/t5/azure-active-directory-identity/manage-authentication-sessions-in-azure-ad-conditional-access-is/ba-p/500983

    0 comments