SAML2 SLO Errors Not Being Logged

Select Language

0D54z00009xS83VCASOkta Classic EngineIntegrationsAnswered2024-02-01T15:55:42.000Z2024-01-30T23:07:36.000Z2024-02-01T15:55:42.000Z

User16674172739835246828 (Customer) asked a question.

Edited January 31, 2024 at 3:52 PM

SAML2 SLO Errors Not Being Logged

Making a logout request:

<LogoutRequest xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xmlns:xsd="http://www.w3.org/2001/XMLSchema" ID="id7d1c88c01b4e40cbb0a610749e701ac4" Version="2.0" IssueInstant="2024-01-30T23:05:28.7518256Z" Destination="xxx.okta.xxx" Reason="urn:oasis:names:tc:SAML:2.0:logout:user" xmlns="urn:oasis:names:tc:SAML:2.0:protocol" ><Issuer xmlns="urn:oasis:names:tc:SAML:2.0:assertion">https://localhost:44371/federation/saml2/signin</Issuer><NameID Format="urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified" xmlns="urn:oasis:names:tc:SAML:2.0:assertion" >xxx@xxx.com</NameID><SessionIndex>id2def9c7f8fc949c79edab6419d64381b</SessionIndex></LogoutRequest>

This fails with:

<saml2p:Status xmlns:saml2p="urn:oasis:names:tc:SAML:2.0:protocol"><saml2p:StatusCode Value="urn:oasis:names:tc:SAML:2.0:status:RequestDenied" /></saml2p:Status>

The problem is I don't know why, and the UI logs don't show any entries from failed events, just successful ones.

Integrations

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies