Idp initiated SLO

nadia.zyborska · April 1, 2025, 8:15pm

I am trying to set up SLO for my SAML connection and have been finding it difficult.

This question is specifically for Idp initiated sign out where auth0 is the SP:

When I click setup in the enterprise saml connection I can see the SLO url with the following details:

SingleLogout service URL
This is where the SAML identity provider will send logout requests and responses:
   `url.com/logout`
SAML logout requests must be signed by the identity provider.

I am confused as to how this will then trigger the user to be signed out of my application? Is there a callback?

Thanks,

Nadia

gerald.czifra · April 1, 2025, 8:58pm

Hi @nadia.zyborska

Thank you for reaching out to us!

I highly recommend you read through the following Knowledge Article on Federated Logout and Single Logout (SLO) which describes the behavior and overall process when Auth0 acts as the SP and also when it’s the IdP. Although this doc is admittedly a little older, the general flow remains largely the same.

Hope this helped!
Gerald

Topic		Replies	Views
Auth0 SLO where Auth0 acts both IDP and SP Get Help	5	6145	January 4, 2019
Federated Logout and Single Logout (SLO) Knowledge Articles saml , logout , connections , logoutrequest , slo , saml-enterprise-connections	1	11269	April 4, 2022
SAML SLO not logging user out Knowledge Articles	1	683	September 21, 2023
Getting SAML Response instead of LogoutResponse for the LogoutResquest sent to Auth0 IdP Get Help saml	2	2304	December 22, 2022
Federated Logout with Auth0 as SAML IdP and SP Knowledge Articles auth0 , logoutrequest , idp , service-provider , saml-enterprise-connections , federated	1	908	August 17, 2023

Idp initiated SLO

Related topics