Third-party apps that support Universal Logout

These third-party apps support Universal Logout. Each app has different implementation, permission requirements, and Universal Logout behaviors. Apps identified as Secure Identity Integrations bring advanced security to some of the biggest SaaS apps.

Full Universal Logout support

App name
Notes
Secure Identity Integration
Box See Create jobs to terminate users session.
Cerby See Cerby Help Center.
Dropbox for Business See /devices/list_member_devices and /devices/revoke_device_session_batch.
Google Workspace and Google Cloud Platform These apps share an identity stack. If a user has access to both of these apps, they're signed out of both apps when Universal Logout is triggered for Google Workspace.

See Method: users.signOut.

Island.io

 See Island.io.

PagerDuty See Delete all OAuth delegations.
Salesforce See AuthSession.
Salto See Universal Logout.

Sastrify See Sastrify Okta SSO Configuration Guide.

Slack You can only enable Universal Logout for Slack Enterprise's Slack account.

See admin.users.session.reset.
Splunk See Splunk Enterprise product documentation.
Surf This product suspends a user when Universal Logout is triggered. To unsuspend a user, restore the session through the Surf console or API. Contact Surf for support.
Zendesk See Delete Session.
Zerocater

See Zerocater Integration.

Zoom See Revoke a user's SSO token.

Partial Universal Logout support

App name
Notes
Secure Identity Integration
Archlet / Archlet Staging See Archlet Okta OIN Guide.

BetterLogiq See BetterLogiq Integration.

Brellium See Brellium Integration.

Cleo Health See Cleo Health Integration.

Doppel See Doppel Okta Setup Instructions.

Exabeam See Exabeam Administration Guide - Okta Setup.

Lyster See Lyster Integration.

Microsoft:
  • Azure Portal
  • Defender for Cloud Apps
  • Defender for Endpoint
  • Defender for Office 365
  • Dynamics 365
  • Microsoft 365
  • Microsoft Office 365 Government - GCC High
  • Power BI
  • Power Platform and Visual Studio
  • Sentinel
  • SQL Server Management Studio
 These apps share an identity stack and only provide a partial Universal Logout. Universal Logout only revokes their refresh tokens. User sessions aren't terminated until the user's existing access tokens expire or the user signs out. The token expiration timeout is different for each app.

See Revoke user access in Microsoft Entra ID and Configure Office 365 GCC High Tenant.

OX Security See OX Security SSO Config Guide.

Safety AZ See Safety AZ Integration.

Svix See Svix Integration.

Related topics

Universal Logout supported apps and devices

Universal Logout revocations