Skip to main content

This content has been archived and is no longer being updated. Links may not function; however, this content may be relevant to outdated versions of the product.

Support Article

SSO log off is not working as expected

SA-11991

Summary



You have added the following script into your web-session-return HTML:

<script type="text/javascript">
document.execCommand("ClearAuthenticationCache","false");
</script>

When using Chrome, during user log-off, the system logs the user back into the system. You cannot reproduce this problem in IE.


Error Messages



Not Applicable

Steps to Reproduce



Using Chrome - Login using Siteminder Authentication.
user clicks on logoff 
System logs back user into the system.


Root Cause



This Javacript only works in IE:

document.execCommand("ClearAuthenticationCache","false");

When logging off with IE this Javascript clears all Session Cookies. So the request to the PRPC login screen is blocked by Siteminder and users are required to log in again through Siteminder.
When logging off with Chrome this Javascript doesn't do anything. So the request to the PRPC login screen is NOT block by Siteminder and the users is logged in again.



Resolution



Remove the Javascript from Web-Session-Return: document.execCommand("ClearAuthenticationCache","false");

Following the support article: https://pdn.pega.com/support-articles/sso-log-off-is-not-working

When using third party security software like Siteminder you can redirect in Web-Session-Return to the logoff URL provided by the third party software.
Suggest Edit

Published July 9, 2015 - Updated October 8, 2020

Did you find this content helpful? Yes No

100% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

We'd prefer it if you saw us at our best.

Pega Community has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice
Contact us