I would like to know a way to kill the SiteMinder session. My users does not log off from a protected website they just close the browser. When they try to used the forgotten password feature of IdentityMinder they receive a message that they are not authorize because it try to impersonate the forgotten password feature with the user that just close the browser.
I have try to include several META tags that you suggest on the web site but not of them works.
<META HTTP-EQUIV="cache control" CONTENT="no-cache">
<META HTTP-EQUIV="pragma" CONTENT="no-cache">
<META HTTP-EQUIV="Expires" CONTENT="0">
<META HTTP-EQUIV="Set-Cookie" CONTENT="SMSESSION=;expires=Wednesday, 1-Jan-70 09:00:01 GMT;domain=.iadb.org;path=/">
<META HTTP-EQUIV="Set-Cookie" CONTENT="SMONDENIEDREDIR=;expires=Wednesday, 1-Jan-1970 09:00:01 GMT;domain=.iadb.org;path=/">
<META HTTP-EQUIV="Set-Cookie" CONTENT="FORMCRED=;expires=Wednesday, 1-Jan-1970 09:00:01 GMT;domain=.iadb.org;path=/">
The solution should work for several web browsers
From your agent log file,
[02/Dec/2003:14:12:46-812] - main - Windows NT Netegrity Secure Proxy Server 5.5, 5.5 BUILD: BLD-PROXY5.5-030530-201 [proxy-engine]
[02/Dec/2003:14:12:46-812] - main - Copyright(c) Netegrity 1996-2001
You have this as your Secure Proxy Secure. In the settings, make sure you set
[02/Dec/2003:14:12:46-875] - main - TransientIDCookies: 'NO' (Currently you have)
[02/Dec/2003:14:12:46-875] - main - TransientIDCookies: Yes,
will remove smidentity cookie.In addition, after you made changes, you need to clear the cookies, caches and history from your browser to see the results.