How to kill Siteminder session (Legacy_Onyx KB Id: 134323)

Document ID : KB000055013
Last Modified Date : 14/02/2018
Show Technical Document Details

Description:

I would like to know a way to kill the SiteMinder session. My users does not log off from a protected website they just close the browser. When they try to used the forgotten password feature of IdentityMinder they receive a message that they are not authorize because it try to impersonate the forgotten password feature with the user that just close the browser.

I have try to include several META tags that you suggest on the web site but not of them works.

&ltMETA HTTP-EQUIV="cache control" CONTENT="no-cache">
&ltMETA HTTP-EQUIV="pragma" CONTENT="no-cache">
&ltMETA HTTP-EQUIV="Expires" CONTENT="0">
&ltMETA HTTP-EQUIV="Set-Cookie" CONTENT="SMSESSION=;expires=Wednesday, 1-Jan-70 09:00:01 GMT;domain=.iadb.org;path=/">
&ltMETA HTTP-EQUIV="Set-Cookie" CONTENT="SMONDENIEDREDIR=;expires=Wednesday, 1-Jan-1970 09:00:01 GMT;domain=.iadb.org;path=/">
&ltMETA HTTP-EQUIV="Set-Cookie" CONTENT="FORMCRED=;expires=Wednesday, 1-Jan-1970 09:00:01 GMT;domain=.iadb.org;path=/">

The solution should work for several web browsers


Solution:

From your agent log file,

[02/Dec/2003:14:12:46-812] - main - Windows NT Netegrity Secure Proxy Server 5.5, 5.5 BUILD: BLD-PROXY5.5-030530-201 [proxy-engine]
[02/Dec/2003:14:12:46-812] - main - Copyright(c) Netegrity 1996-2001

You have this as your Secure Proxy Secure. In the settings, make sure you set

[02/Dec/2003:14:12:46-875] - main - TransientIDCookies: 'NO' (Currently you have)

[02/Dec/2003:14:12:46-875] - main - TransientIDCookies: Yes,

will remove smidentity cookie.In addition, after you made changes, you need to clear the cookies, caches and history from your browser to see the results.