漏洞
In Portal for ArcGIS, when using a Security Assertion Markup Language (SAML) based authentication (enterprise logins), initiating a logout from the Active Directory Federation Services (ADFS) identity provider does not log the user out of the portal.
| 漏洞 ID 编号 | BUG-000108020 |
|---|---|
| 已提交 | September 14, 2017 |
| 上次修改时间 | June 5, 2024 |
| 适用范围 | Portal for ArcGIS |
| 找到的版本 | 10.4.1 |
| 操作系统 | Windows OS |
| 操作系统版本 | 2012 R2 |
| 修正版本 | 10.7 |
| 状态 | Fixed |
解决办法
If logouts are initiated by the identity provider, the following workaround can be used:
- In the Home app, export the service provider metadata file by navigating to Organization > Edit Settings > Security. Click Get Service Provider.
- Save the service provider metadata file to a local location and edit it using a text or XML editor.
- Locate the XML element "md:SingleLogoutService" and update the value of the "Location" attribute to https://[Fully qualified domain name]/[web context]/sharing/rest/oauth2/signout.
- Update the relying party configuration in the identity provider with this service provider metadata.
重现步骤
漏洞 ID: BUG-000108020
软件:
- Portal for ArcGIS
当漏洞状态发生变化时获得通知
发现关于本主题的更多内容
搜索相关信息
查找与此主题相关的培训
探索想法并提供反馈
获取来自 ArcGIS 专家的帮助
下载 Esri 支持应用程序