Support Article
SSO log off is not working as expected
SA-11991
Summary
You have added the following script into your web-session-return HTML:
<script type="text/javascript">
document.execCommand("ClearAuthenticationCache","false");
</script>
When using Chrome, during user log-off, the system logs the user back into the system. You cannot reproduce this problem in IE.
Error Messages
Not Applicable
Steps to Reproduce
Using Chrome - Login using Siteminder Authentication.
user clicks on logoff
System logs back user into the system.
Root Cause
This Javacript only works in IE:
document.execCommand("ClearAuthenticationCache","false");
When logging off with IE this Javascript clears all Session Cookies. So the request to the PRPC login screen is blocked by Siteminder and users are required to log in again through Siteminder.
When logging off with Chrome this Javascript doesn't do anything. So the request to the PRPC login screen is NOT block by Siteminder and the users is logged in again.
Resolution
Remove the Javascript from Web-Session-Return: document.execCommand("ClearAuthenticationCache","false");
Following the support article: https://pdn.pega.com/support-articles/sso-log-off-is-not-working
When using third party security software like Siteminder you can redirect in Web-Session-Return to the logoff URL provided by the third party software.
Published July 9, 2015 - Updated October 8, 2020
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.