Profile Action ProcessLogoutRequest: No active session(s) found matching LogoutRequest - Unknown Principle in the LogoutResponse, status is not SUCCESS

Cantor, Scott cantor.2 at
Thu Jul 18 16:21:23 EDT 2019

On 7/18/19, 1:37 PM, "users on behalf of Nrusimhayya Manda" <users-bounces at on behalf of nrusimhayya.manda at> wrote:


NameQualifier="https://<IdP host>:<IdP port>/idp/shibboleth"
SPNameQualifier="https://<SP host>:<SP port>/" 


<saml2:NameID xmlns:saml2="urn:oasis:names:tc:SAML:2.0:assertion"
NameQualifier="https://<IDP HOST>:<IDP PORT>/idp/shibboleth">nmanda4</saml2:NameID>  

They don't match. SAML requires they match. That's it. Exactly what I already told the other person that asked the same question.

Format, both qualifiers, the value, all have to match.

-- Scott

More information about the users mailing list