SLO problem IdP v.3.4.6

Kai Zimmer zimmer at
Fri Jul 17 16:29:20 UTC 2020

Hi Scott,

thanks a lot for your hints.

On 16.07.2020 19:35, Cantor, Scott wrote:
>> SLO never being practical anyway notwithstanding, most issues amount to NameID mismatches between the
>> LogoutRequest and the original Assertion, so that's missing the core comparison you need to debug via the log.

I did that, her's the output. I'm not an expert, but it looks to me like 
there is no mismatch between in the NameID in the original assertion and 
the NameID in the LogoutRequest. So there is a problem with the 
StorageService of the IdP? I switched it to Client side Browser cookies 
- it makes no difference, i still get 'SessionNotFound' errors?

Snippet from original assertion:





Snippet 1 from idp-warn.log:

2020-07-17 17:50:30,916 - - WARN 
- Ignoring NameIDFormat metadata that includes the 'unspecified' format

Snippet  from LogoutRequest:




IssueInstant="2020-07-17T15:55:34Z" Version="2.0"






Snippet 2 from idp-warn.log:

2020-07-17 17:55:35,088 - - WARN 
[org.opensaml.profile.action.impl.LogEvent:105] - A non-proceed event 
occurred while processing the request: SessionNotFound

Best regards,


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <>

More information about the users mailing list