How to auto signout webapp from b2b azure ad authentication v2 openid connect implemetented in .net framework in 15 mins.

Kishore Kumar K 1 Reputation point
2020-10-26T06:51:48.117+00:00

I have being working in web app with single sign-on ad authentication v2 with OpenID connect in .NET framework. Every time when I try to Sign-out, 'Which account do you want to sign out of?' page is coming to select account even if one account is logged in. It prevents from auto sign-out in 15 mins. I have tried with 'ExpireTimeSpan' in CookieAuthenticationOptions, startup.auth.cs and its relogging without password. I have also tried with deleting cookies, session and providing login_hint in singout but it didn't logged out completely.

I have also tried to set Conditional Access in azure portal, but its minimum time out is 1hrs and its not based on inactivity.

Please provide me mechanisms to sign-out completely in 15 mins using azure ad OpenID authentication V2 version in .net frame work so that users need to provide password after 15 mins of inactivity. 34895-signout-accounts.jpg.

Azure App Service
Azure App Service
Azure App Service is a service used to create and deploy scalable, mission-critical web apps.
7,671 questions
Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,411 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. AmanpreetSingh-MSFT 56,556 Reputation points
    2020-10-26T08:44:26.63+00:00

    Hello @Kishore Kumar K · Welcome to Q&A platform and thanks for your query.

    This can be configured by using Sign-in frequency feature in Conditional Access policy. Unfortunately, you can't set it for 15 minutes as the minimum frequency that can be set is 1 Hour after which user would be required to sign-in again. Maximum value can be 365 days.

    32319-image.png

    Read More: Sign-in frequency control

    -----------------------------------------------------------------------------------------------------------

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.