Hello, I'm new to SSO, but we have a situation where for specific use-cases we need to logout Windows users from their AAD sessions (all through Chrome), and we would like to do this automatically (e.g. after the screen is locked and a period of inactivity has expired).
After reading the Azure OIDC Protocols signout documentation we tried (using a script) fetching the end_session_endpoint from https://login.microsoftonline.com/common/v2.0/.well-known/openid-configuration, and calling the logout endpoint, however the 'Pick an Account' user prompt appears which requires user interaction before the user is logged out, and therefore doesn't help us automatically log the user out.
Is there a way of avoiding this user prompt so that the logout can occur automatically, e.g. to pass the session details? Alternatively is there another method that we could explore for a specific set of users (we don't want to reduce the AAD session timer for all users).