Support Article
ADFS SSO does not work
SA-16613
Summary
Microsoft ADFS based SSO solution displays the following error message during logout:
Status: fail
Message: There has been an issue; please consult your system administrator
Operator ID: Unauthenticated or not available
User Environment Details:
- Pega 7.1.8
- Microsoft AD FS 2.0
Error Messages
(gleLogOff.Code_Security.Action) INFO localhost|127.0.0.1 myuser - Logging off the user forcibly : InvalidStatus : Received an invalid LogoutResponse with status : urn:oasis:names:tc:SAML:2.0:status:Requester
Steps to Reproduce
- Log in to the portal
- Logout
Root Cause
Incomplete URL provided for the log out location in the Authentication Service.
Resolution
Perform the following local-change:
Append the following query string parameter to the logout location: wa=wsignout1.0
For more information please refer to the Microsoft TechNet Article: AD FS: How to Invoke a WS-Federation Sign-Out
Published January 31, 2016 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.