Issue in Signout the user

Rohit Pawar 20 Reputation points
2023-09-14T12:36:22.5166667+00:00

AADSTS50070: Signout failed. The request specified session indexes '_c2199208-f13f-4136-aa14-ada90561c300' which did not match the existing session(s).

ACS Assertion Consumer URL

I have configured 3 Reply URL and then trying this:

  1. Login with 1st app got a session ID
  2. Login with 2nd app got a session ID

And then try to logout from 1st app but I got above mentioned error.

Why this happend.

Microsoft Entra External ID
Microsoft Entra External ID
A modern identity solution for securing access to customer, citizen and partner-facing apps and services. It is the converged platform of Azure AD External Identities B2B and B2C. Replaces Azure Active Directory External Identities.
2,843 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,369 questions
{count} votes

3 answers

Sort by: Most helpful
  1. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.


    Comments have been turned off. Learn more

  2. Deleted

    This answer has been deleted due to a violation of our Code of Conduct. The answer was manually reported or identified through automated detection before action was taken. Please refer to our Code of Conduct for more information.


    Comments have been turned off. Learn more

  3. Rohit Pawar 20 Reputation points
    2024-03-01T13:08:13.3933333+00:00

    The problem has been resolved. The issue is that currently Azure handles only one latest session ID for one SAML app. It does not consider multiple Assertion Consumer URLs. Whenever we log in with a different AC URL, it generates a new session ID. The latest session ID will be registered in Azure, but when we try to log out with the old app, we get an error saying the session ID does not match.

    This was resolved by using the global logout link provided by Azure.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.