Multi SSO plugin do not support SAMLRequest containing a SAML LogoutRequest, ignoring IdP initiated logouts.Problem
Some Identity providers (IdPs) allow you to logout on them, and they issue a logout request into the instances. At this time, ServiceNow does not support SAMLRequest containing a SAML LogoutRequest.Symptoms
Users try to logout on their Identity provider. However, if they navigate to the instance, the session is still active.
This problem can be recognized because reviewing the browser network logs, a call occurs as follows:
It contains a SAML logout request sent to the instance. It looks as follows:
The problem is caused because the SAML Multi SSO plugin does not support a SAML request containing a SAML LogoutRequest.Resolution
To logout from an instance, please issue a call to the /logout.do page instead.