Previous Topic: How to Configure Single Logout on SharePoint 2010Next Topic: Leave the Sign-out Service URL Unprotected

Agent for SharePoint GuideAdvanced OptionsHow to Configure Single Logout on SharePoint 2010Disable Client LoopbackLeave the Clean Up URL Unprotected

Leave the Clean Up URL Unprotected

As a policy administrator who manages the polices on the Policy Server, the next step in configuring single logout is leaving the cleanup URL unprotected.

Leaving the cleanup URL unprotected prevents a security challenge from appearing during the single logout process.

Follow these steps:

  1. Pick the appropriate procedure for your type of policy from the following list:
  2. Leave the cleanup URL unprotected in your policy domain with the following steps:
    1. Click Policies, Domain, Realms.
    2. Click Create Realm
    3. Verify that the domain with your SharePoint web applications is selected and then click Next.
    4. Enter a name and optional description for the new realm.
    5. Click the Lookup Agent/Agent Group button, and then add the agent object that protects your SharePoint web applications.
    6. Click the resource filter field, and then add the following text: 
      _trust?wa=wsignoutcleanup1.0
    7. Click the Unprotected option button.
    8. Click Finish.
  3. Repeat Steps 2a through 2h for each policy domain protecting your SharePoint web applications.
  4. Leave the cleanup URL unprotected in your application policy (EPM) with the following steps:
    1. Click Policies, Application, Applications.
    2. Click the edit icon of the application that protects your SharePoint web applications.
    3. Verify that the General tab is selected, and then click Create Component.
    4. Enter a name for the component.
    5. Click the Lookup Agent/Agent Group button, and then add the agent object that protects your SharePoint web applications.
    6. Click the resource filter field, and then add the following text: 
      _trust?wa=wsignoutcleanup1.0
    7. Click the Unprotected option button.
    8. Click OK.
    9. Click Submit.
  5. Repeat Steps 4a through 4i for each application policy (EPM) protecting your SharePoint web applications.

    The cleanup URLs are unprotected. Have your policy administrator continue with the next step of leaving the sign-out service URL unprotected.