Federation Security Services Guide › Deploying Federation without the FSS Sample Application › Add Functionality to the Federation Deployment › Configure Single Logout › Enable Single Logout at the SP

Enable Single Logout at the SP

You can initiate single logout at the Service Provider.

To configure single logout at the SP

1. Ensure that the realm with the protected resources is configured for persistent sessions.
2. From the Authentication Scheme Properties dialog, click Additional Configuration.

   The SAML 2.0 Auth Scheme Properties dialog opens.

3. Select the SLO tab.
4. Select the HTTP-Redirect checkbox.

   The rest of the fields become active.

5. Complete the fields as follows:
   • SLO Location URL

     http://www.idp.demo:80/affwebservices/public/saml2slo

   • SLO Confirm URL

     http://www.sp.demo:81/spsample/SLOConfirm.jsp

6. Accept the default values for all other fields.
7. From the Policy Server Management Console, enable the session server.