We have integrated IDM Identity Manager with WSO2 for SSO. In the Management Console we have configured OpenID Connect.
Even the SLO is properly configured in the authentication product module class for OpenID Connect: in the End Session Endpoint field.
We have noticed that when you click to logout in the Identity Manager this URL is not used and you are always redirected to the native logout screen, so WSO2 is never called, so session is never ended. We have checked using developers tool in the web browser and the request is never sent.
We have changed the end point session to any other values with no effect.
- When we click on Logout the URL is shown down left in the screen:
Release : 14.4
The solution was to configure the MainConsoleLogoutUrl in Miscellaneous of Advanced Settings of the Environment used in Identity Manager Management console.
Logoff URL https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-manager/14-4/configuring/ca-single-sign-on-integration/ca-sso-operations/configure-the-logoff-uri.html
MainConsoleLogoutUrl doesn't work - https://knowledge.broadcom.com/external/article?articleId=231212
How to update Logout url in CA identityEnv https://knowledge.broadcom.com/external/article?articleId=145376