Global Single Logout (Sun OpenSSO Enterprise 8.0 Deployment Planning Guide)

Sun OpenSSO Enterprise 8.0 Deployment Planning Guide

Previous: Secure Attribute Exchange at the Service Provider
Next: Setting Up and Configuring Secure Attributes Exchange

Global Single Logout

Global single logout can be implemented in various ways. In this example, a user is already authenticated and has established single sign-on with the Service Provider instance of OpenSSO Enterprise. The user clicks on a Global Logout link. The Identity Provider will then invalidate its local session, if it's already created, and trigger SAMLv2 single logout by invoking a provided OpenSSO Enterprise URL. The OpenSSO Enterprise Identity Provider executes the SAMLv2 single logout, terminating the session on both Identity Provider and Service Provider instances of OpenSSO Enterprise.

Previous: Secure Attribute Exchange at the Service Provider
Next: Setting Up and Configuring Secure Attributes Exchange