12.2.2.2 Testing Single Logout (Deployment Example: SAML v2 Using Sun OpenSSO Enterprise 8.0)

Deployment Example: SAML v2 Using Sun OpenSSO Enterprise 8.0

12.2.2.2 Testing Single Logout

Single logout permits session termination of all participants in the session. The logout request can be initiated by any participant in the session.

To Test Single Logout Using Back Channel SOAP Over HTTP

Enter the single logout URL in a web browser: https://lb4.sp-example.com:1081/opensso/saml2/jsp/spSSOInit.jsp?metaAlias=/sp&binding=urn:oasis:names:tc:SAML:2.0:bindings:SOAP&idpEntityID=https://lb2.idp-example.com:1081/opensso.

The message “SP initiated single logout succeeded” is displayed and both user profile sessions are ended.

(Optional) To view the SAML v2 assertion used, see the debug file in /export/ossoadm/config/opensso/debug/Federation.

To Test Single Logout Using Front Channel HTTP

Enter the single logout URL in a web browser: https://lb4.sp-example.com:1081/opensso/saml2/jsp/spSSOInit.jsp?metaAlias=/sp&idpEntityID=https://lb2.idp-example.com:1081/opensso.

The message “SP initiated single logout succeeded” is displayed and both user profile sessions are ended.

(Optional) To view the SAML v2 assertion used, see the debug file in /export/ossoadm/config/opensso/debug/Federation.

© 2010, Oracle Corporation and/or its affiliates