Users cannot automatically log out of CA eTrust SiteMinder
without restarting the browser. As a best practice, you should configure
SiteMinder with a logout link, which when accessed within the same
browser session, logs out the user.
Procedure
- Create a file named
Logout.html on your
HTTP server. The file can have no content or have something simple
such as "Logged Out of SiteMinder." - Add the following parameter to the SiteMinder Web Agent
Webagent.conf file,
or, if the local configuration is not enabled, set it in the appropriate
Agent Configuration Object on the SiteMinder Policy Server.LogOffURI="PathtoLogout.html"
For
example, for the IBM® Sametime® Community Server,
enter
LogOffURI = /names.nsf?Logout
For
example, for the Sametime Meeting
Server, enter
LogOffURI = /stmeetings/ibm_security_logout
For
example, for the Sametime Advanced
Server, enter
LogOffURI = /stadvanced/ibm_security_logout
For
example, for the Sametime Proxy
Server, enter
LogOffURI = /stwebclient/ibm_security_logout
- Restart the HTTP Server.