Cisco Bug: CSCvv23591 - Customer requesting SLO/logout from intersight and SSO when logging out from Intersight
Oct 05, 2020
- Cisco Unified Computing System
Known Affected Releases
Symptom: Customers who click the Log Out button from intersight are not logged out of the IdP assigned to their account (Either cisco built-in or SSO/SAML enabled). Therefore when customers log back into intersight, they are redirected to their SSO endpoint and not required to re-authenticate. Note that for cisco.com build-in SSO, users will still have to provide their username/email address, however they are not required to provide their password or 2-factor authentication mechanism. Conditions: Users logging into intersight who have clicked logout. Note that this behavior is more apparent with 3rd party SSO providers because many (eg: ForgeRock) do not require any inputs once redirected to them.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases