If your agents use single sign-on (SSO) to log in to other
applications using B2C Service as the identity provider,
they can be automatically logged out of all the service providers
they're logged into when they log out of any one of them.
Before you start
This procedure assumes that:
- Single sign-on is enabled on your site and that you have already added the external service
provider to B2C Service.
- You have added the Single Sign-On Configurations component to the configuration list for the
Configuration button. See Create a Navigation Set for the Administrator.
Here's what to do
- Click Configuration on the navigation
pane.
- Double-click Single Sign-on Configurations in your navigation list.
The Single Sign-On Configurations tree opens.
- Select the service provider for which you want to enable
single logout in the tree.
The Service Provider editor opens.
- Click the arrow next to SAML Token Parameters.
- Click the arrow next to Logout Parameters and enter the
URL where the identity provider sends the logout request to the service
provider in the Logout URL field.
- Enter the number of seconds the identity provider’s logout
request will be valid in the Logout Validity Duration field.
The default value is 600 seconds.
- Click the arrow next to Certificates
to expand the section.
- Click the folder next to the Import
Certificate field to select the location of the certificate you want
to use to validate logout requests.
After you select the certificate file, it populates the
Certificate field.
- To use a second certificate to validate logout requests,
click the folder next to the Import Alternate
Certificate field and select the certificate you want to use.
Using an alternate certificate is useful if you're transitioning
from an expiring certificate.
- Click Save.