SAML Single Log Out with Azure AD as IDP in SAP HANA
How do I implement SAML Single Log Out with Azure AD as IDP in SAP HANA?
I have defined a web app in Azure to access to resources hosted on SAP HANA as described in this link.
In the web app is defined a logout endpoint which is
https://login.windows.net/common/wsfederation?wa=wsignout1.0
From browser I log to Azure AD and then I access to the resources on HANA. After I called the endpoint from address bar of the browser, I have to close all browser windows in order to do a proper logout.
- Is this the expected behavior when I log out?
- How do I implement a SAML Single Log Out in a native app? Is that realistic scenario?
Thanks
Yes, this is the expected behavior because you are using WS-Fed logout. In this case SAP Hana (might be Hana Identity Manager) is redirecting to this URL for doing single log out. Azure AD does support SAML Single sign-out also. But you need to check that first with SAP HANA. If they support SAML based single sign-out then application can send the SAML Logout POST Request to Azure AD and then Azure AD can logout the user and redirect back the user to another page as specified in the request.
This detailed flow is documented here https://learn.microsoft.com/en-us/azure/active-directory/develop/active-directory-single-sign-out-protocol-reference
- Deploy filtered metrics on Azure dashboard with Bicep
- IAsyncEnumerable JSON streaming is not streaming on azure web app running on IIS
- node-fetch azure document translator
- Need help getting Azure AD B2C SSO with Azure AD
- Unable to get all users from Microsoft Graph using Python SDK
- You need to ensure that WebApp1 uses the ASP.NET v4.7 runtime stack
- MS Graph API - How to query additional pages
- how to hash users into random values in azure databricks
- How can I manage Azure SQL user/login/credentials
- How to connect secrets value stored in Azure key vault to Azure app service env variables directly
- AVD Insights Host Performance Blade Empty after vhange to new Azure Monitoring Agent
- How to get a list of users from azure graph API
- Azure App Service Flask Deployment Error: "Failed to Respond to HTTP Pings on Port 8000; Site Start Failed. Check Container Logs for Debugging."
- Azure Function App - No continuous deployment setting for "Flex Consumption" hosting plan?
- Az-GetRoleAssigments Not returning Data for DisplayName, SignInName & Object Type - Azure Powershell Runbook
- Can you publish a new standalone Angular project (esproj) directly from VS2022 to Azure?
- Cors configuration
- Publish error: Found multiple publish output files with the same relative path
- remove event subscriptions from system topics
- Is it possible to use .env in a React Web project?
- Sign in to Azure Account from VS Code
- How to copy blobs from azure to aws using python?
- AKV10032: Invalid issuer error when connecting to Azure Key Vault from App Service
- how to mask hash users into random values [email protected] in azure databricks
- Can we use PostgREST API with Azure
- Bicep adding DNS Records saying already exists when it doesn't
- Issue in sending personal message in MS Teams with Graph API
- import files to databricks workspace
- Create an Api connection to log analytics workspace via bicep
- az funcapp publish .net8 Isolated breaking Azure configuration runtime settings on Sync