How to auto signout webapp from b2b azure ad authentication v2 openid connect implemetented in .net framework in 15 mins.

Question

I have being working in web app with single sign-on ad authentication v2 with OpenID connect in .NET framework. Every time when I try to Sign-out, 'Which account do you want to sign out of?' page is coming to select account even if one account is logged in. It prevents from auto sign-out in 15 mins. I have tried with 'ExpireTimeSpan' in CookieAuthenticationOptions, startup.auth.cs and its relogging without password. I have also tried with deleting cookies, session and providing login_hint in singout but it didn't logged out completely.

I have also tried to set Conditional Access in azure portal, but its minimum time out is 1hrs and its not based on inactivity.

Please provide me mechanisms to sign-out completely in 15 mins using azure ad OpenID authentication V2 version in .net frame work so that users need to provide password after 15 mins of inactivity. .

Answer

Hello @KishoreK · Welcome to Q&A platform and thanks for your query.

This can be configured by using Sign-in frequency feature in Conditional Access policy. Unfortunately, you can't set it for 15 minutes as the minimum frequency that can be set is 1 Hour after which user would be required to sign-in again. Maximum value can be 365 days.

Read More: Sign-in frequency control

-----------------------------------------------------------------------------------------------------------

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

How to auto signout webapp from b2b azure ad authentication v2 openid connect implemetented in .net framework in 15 mins.

1 answer