Will the index session included in SAML SSO/SLO renew and terminate each time authentication occurs in Auth0?

I try SSO and SLO and it seem the indexSession terminate when SLO occur and renew when SSO occur. I am correct?

Hi @varit.asawavetvutt,

Welcome to the Auth0 Community!

Yes, you are correct. I confirmed in a brief test!

Best,

Mary Beth

1 Like

Hi @ marybeth.hunter

Thank you for your answer. I’d like to have an additional confirmation about session termination regarding Single Logout (SLO). In the case where Auth0 acts as an Identity Provider (IdP), after the SAML SLO is executed, can Auth0 process SAML back-channel logout? Or in SAML SLO, are we limited to executing only SAML front-channel logout?

If we can only execute front-channel logout, do you have any example code or instructions that I could use as a reference?

My concern is how to properly implement SAML SLO(Auth0 acts as IdP) with multiple SP applications.

Hi @varit.asawavetvutt,

Thank you for your reply!

Right now, Auth0 does not support SAML back-channel logout, just OIDC back-channel logout.

Please see our documentation on configuring SLO with Auth0 is the SAML IdP: Log Users Out of SAML Identity Providers

Please let me know if you have any additional questions!

Thanks,

Mary Beth

1 Like

Hi @marybeth.hunter

Thank you for your answer.
I have one last confirmation about front-channel logout. I checked the link below that discusses how SP-initiated SLO works. In the SP-initiated SLO flow diagram, does number 5 of the logout process refer to SAML front-channel logout?

Thank you
Varit

Hi @varit.asawavetvutt,

Yes, that is correct!

Best,

Mary Beth