When a user explicitly logs out of Access Manager the following events occur:
The user logs out by clicking on a link to the Logout Service.
The Logout Service receives the Logout request, and then performs the following steps:
Marks user’s session as destroyed.
Returns a successful logout page to the user.
The Session Service notifies applications which are configured to interact with the session.
In this case, each of the policy agents was configured for Session Notification, and each is sent a document instructing the agent that the session is now invalid.
The policy agents flush the session from cache and the user session ends.