000022188 - Single Sign-Off Integration between RSA ClearTrust and 3rd-party Applications

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000022188
Applies ToRSA ClearTrust 5.5
RSA ClearTrust Agent
IssueSingle Sign-Off Integration between RSA ClearTrust and 3rd-party Applications
CauseSome RSA ClearTrust 3rd-party integrations (http://rsasecurity.agora.com/rsasecured/results.asp?product_program=110) do not include instructions on how to integrate sign-off with the 3rd-party application. To ensure the user is logged off, the application must invalidate the CTSESSION cookie.
ResolutionTo invalidate the CTSESSION cookie, ensure the 3rd-party's logout page is defined as the RSA ClearTrust logout form location in the webagent.conf file:

# Specifies the path and file location of the page RSA ClearTrust uses to log
# out a user and end an RSA ClearTrust session. A request for this URL will
# result in invalidation of the RSA ClearTrust SSO session.
#
# Allowed Values:
# The relative directory path and filename in your web server document root,
# or a full URL to the file.
#
cleartrust.agent.logout_form_location=/cleartrust/ct_logout_<%language%>.html
Legacy Article IDa27336

Attachments

    Outcomes