Solved: How does a user who signed in via SAML log out?

alain_odea · ‎06-21-2018

We have an interesting problem with our use of Splunk Cloud.

We use SAML to log into it, but if a user is added to a new group, their role in Splunk doesn’t change.

They need to log out and log back in, but there is no sign out or log out action I can find. I’m instructing users to delete cookies, but it’s very disruptive.

How does a user who signed in via SAML log out?

msilence_splunk · ‎03-06-2019

Do you have a Single Log Out URL set in your SAML Configuration? https://docs.splunk.com/Documentation/Splunk/7.2.4/Security/ConfigureSSOinSplunkWeb

There is a comment on idpSLOUrl at https://docs.splunk.com/Documentation/Splunk/7.1.1/Security/ConfigureSAMLSSO that notes that the logout button is disabled if this URL is not specified. This is because Splunk needs to know where to send the logout request back to your IdP at.

View solution in original post

msilence_splunk · ‎03-06-2019

Do you have a Single Log Out URL set in your SAML Configuration? https://docs.splunk.com/Documentation/Splunk/7.2.4/Security/ConfigureSSOinSplunkWeb

There is a comment on idpSLOUrl at https://docs.splunk.com/Documentation/Splunk/7.1.1/Security/ConfigureSAMLSSO that notes that the logout button is disabled if this URL is not specified. This is because Splunk needs to know where to send the logout request back to your IdP at.

anthonysomerset · ‎02-14-2019

i have similar issues with splunk on prem with SAML, ideally i'd like a way that i can remotely logout the session or resync the account

How does a user who signed in via SAML log out?

Extending Observability Content to Splunk Cloud

More Control Over Your Monitoring Costs with Archived Metrics!

New in Observability Cloud - Explicit Bucket Histograms