Configuration Guide › Integrating SiteMinder with Identity Manager › Configure the LogOff URI

Configure the LogOff URI

To protect an Identity Manager environment, configure the SiteMinder Web Agent that protects the environment to terminate a user session after the user logs off Identity Manager.

The Web Agent terminates a user session by deleting the SiteMinder session and authentication cookies from the Web browser and instructing the Policy Server to remove any session information.

To terminate the SiteMinder session, configure logout functionality in the LogOffURI field in the Agent Configuration Object for the SiteMinder agent that protects the Identity Manager environment.

Notes:

• A SiteMinder agent has one LogOff URI. All applications protected by the agent use the same logout page.
• When you configure custom logout pages in the Management Console as described in Configure Custom Logout Pages, Identity Manager sends the logout request to the custom logout page and the LogOff URI. However, Identity Manager displays only the custom logout page to the user.

To configure the LogOff URI

1. Log into one of the following interfaces:
   • For CA SiteMinder Web Access Manager r12 or higher, log into the Administrative UI
   • For CA eTrust SiteMinder 6.0 SP5, log into the Policy Server User Interface

     Note: For information on using these interfaces, see the documentation for the version of SiteMinder that you are using.

2. Modify the #LogOffUri property in the Agent Configuration Object for the agent that protects the Identity Manager environment as follows:
   • Remove the pound sign (#)
   • In the Value field, specify the following URI:

     /idm/logout.jsp

     Note: You select an Agent Configuration Object when you install the Web Agent. For more information, see the CA SiteMinder Web Access Manager Policy Server Installation Guide.

3. Save the changes.
4. Restart the Web server.