When DX Operational Observability (DXO2) is configured to use Azure AD as the SAML identity provider, users are unable to successfully log out. Upon clicking the Log Off button in the DXO2 interface, the system incorrectly redirects the user back to the main application view instead of ending the session.

DXO2 26.1 on-prem.

Azure AD SAML

This issue occurs when the Single Logout URL (sloUrl) is missing or incorrectly defined within the DXO2 tenant SAML configuration. For a complete logout to occur, DXO2 must send a sign-out request to the identity provider's specific logout endpoint.

Once you have the correct Azure AD logout URL, update the DXO2 SAML settings:

1. Access your DXO2 tenant configuration parameters.
2. Locate the SAML authentication settings block.
3. Update the sloUrl parameter and paste the SAML-P sign-out endpoint copied in Step 1.