Single log out if user status changed to inactive in openAM

This topic has 1 reply, 2 voices, and was last updated 5 years, 6 months ago by Bill Nelson.

  • Author
  • #15049


    we are working on one of the project. there are many service providers and OpenAM as working as IDP server. we have using openDJ as datastore in openAM. now we have such requirement like.

    if user logging with SAML SSO on all service providers. if i have change user status as “inactive” in openDJ. that case all systems is not log out. I want for this case openAM initiate single log out request to all service providers.

     Bill Nelson

    I am not aware of any way to configure OpenAM to initiate a single logout to all SPs based on an attribute changing in OpenDJ as this does not have any affect on the user’s session, itself. It would seem better for the application that is performing the actual attribute change to terminate the user’s session and initiate the SLO process.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?