Reputation: 81
how to logout siteminder session from ASP.NET
I have an ASP.NET 3.5 application that is using site-minder for Web SSO authentication. I have a log-out functionality in the application where a user can click the "logout" button. I am abandoning/removing/clearing the session in the button's event handler. Plus I am also clearing all cookies to drop the session. However since the application uses siteminder for authentication, the session is not really getting dropped. After clicking logout, if user navigates to any page then the session still gets created (which it gets from siteminder) without redirecting the user to WebSSO login page.
Please can you advise how can I drop the siteminder session upon logout? Is there any siteminder specific configuration changes at the application/IIS/siteminder level that I need to make to make it work?
Any help highly appreciated!
Thanks
Upvotes: 1
Views: 2409
Answers (2)
Reputation: 1818
The logout/logoff URI needs to be configured in the AgentConfigObject of the WebAgent that is protecting the application.
Upvotes: 0
Reputation: 2273
It's pretty simple. After destroying your own session, you just have to redirect the user to the logout url configured on the siteminder authentication server.
Upvotes: 5
Related Questions
- How to clear out session on log out
- Asp.net get rid of session on server on logout after clearing cookies, session, and formsauth
- session logout in asp.net
- How to kill the Session of User when he LoggedOut in ASP.NET
- Clearing a session in ASP.NET
- Sitefinity - Remove Session after Logout
- SiteMinder Logout using Spring Security
- How to logout from a particular project using asp.net
- Logout using session in asp.net
- Asp.Net 2 integrated sites How to Logout second site programatically