Product Communities
Sign In Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Getting started | Community guidelines
jackchenwork
New Contributor

Federated user logout doesn't work as expected

I am wondering if anyone can confirm this is the expected behavior from lastpass browser extension:

 

When I login as a federated user, the extension will direct me to the SSO OP ( Azure AD ) login page as expected. When I logout from the extension, then login again, it asked me to provide login email, then immediately log me in without redirecting me to OP login page.  I tried Chrome,Edge and Firefox, same result.

 

Looks like when I logout from the extension, it didn't send a logout request to the OP, so my browser session is still login with the OP. 

 

 

‎05-30-2022 09:20 AM
Labels:
0 Kudos
Reply
3 REPLIES 3
jackchenwork
New Contributor

Re: Federated user logout doesn't work as expected

Can anyone from Lastpass confirm this is the supposes behavior for federated user:

 

When logout from lastpass browser extension, user is not really logout from SSO and he can login back without password?

 

Thanks,

‎06-03-2022 08:36 AM
0 Kudos
Reply
AshC
GoTo Manager
GoTo Manager

Re: Federated user logout doesn't work as expected

@jackchenwork  LastPass also keeps a login connection through cookies, and won't require SSO if you're still using the same device within a designated time frame. 

 


Ash is a member of the LastPass Community Care Team.

Was your question answered? Please mark it as an Accepted Solution.
Was a post helpful or informative? Give it a Kudo!
‎06-06-2022 06:25 PM
0 Kudos
Reply
jackchenwork
New Contributor

Re: Federated user logout doesn't work as expected

It doesn't look like the issue is caused by LastPass site cookie.

 

For none-federated user, when user logout from extension, Lastpass user session cookies probably will be deleted, and when user login again, he is prompted to type password. 

 

For federated user, when user logout from extension, Lastpass user session cookies probably will also be deleted, and when user login again, he is directed to Azure AD login page ( this shows Lastpass is asking the user to re-login), but then user is immediately login without being asked to type Azure AD password and MFA.

 

I think the issue is when user logout from extension, Lastpass doesn't send a logout request to the SSO provider.

 

 

 

 

 

‎06-07-2022 09:04 AM
0 Kudos
Reply
About Us
Terms of Service
NEW Privacy Policy
Trademark
© 2023 LogMeIn, Inc. All Rights Reserved