Hello, I have a question about SLO. Is there a way to inform an identity provider (which does not support SLO) about the logout of a user on a service provider (which does support SLO)?
The problem is this: Service Provider supports SLO but Identity Provider does not. (Identity Provider can send SLO-Command to Service Provider but Service Provider can not send to the Identity Provider because missing configuration for SingleLogoutService)
If a user logs on via the identity provider, logs off from the service provider and logs off from the identity provider at last, the identity provider starts SLO because it thinks it has to log off this user from the service provider.
So I would like to know if there is a way to tell the identity provider to ignore this user regarding SLO?
|