|Applies To||RSA ClearTrust 5.5|
RSA ClearTrust Agent
|Issue||Single Sign-Off Integration between RSA ClearTrust and 3rd-party Applications|
|Cause||Some RSA ClearTrust 3rd-party integrations (http://rsasecurity.agora.com/rsasecured/results.asp?product_program=110) do not include instructions on how to integrate sign-off with the 3rd-party application. To ensure the user is logged off, the application must invalidate the CTSESSION cookie.|
|Resolution||To invalidate the CTSESSION cookie, ensure the 3rd-party's logout page is defined as the RSA ClearTrust logout form location in the webagent.conf file:|
# Specifies the path and file location of the page RSA ClearTrust uses to log
# out a user and end an RSA ClearTrust session. A request for this URL will
# result in invalidation of the RSA ClearTrust SSO session.
# Allowed Values:
# The relative directory path and filename in your web server document root,
# or a full URL to the file.
|Legacy Article ID||a27336|