Problem statement
Log-in is successful when using Auth0 as an identity provider for a third-party application using SAML protocol, but on logout, the error below is received. What is the cause of this error?
client_error: No active session(s) found matching LogoutRequest.
Solution
-
Make sure in the SAML logout that the SessionIndex and the NameID match the SAMLResponse.
-
The value for the
Audienceelement should be the entity ID of the SAML Service Provider. If not configured, Auth0 will use the issuer from the SAML request. If the audience in the SAML add-on has been configured, make sure it matches the Issuer of the SAMLRequest.