Configure Universal Logout for third-party apps
Universal Logout lets you terminate users' sessions and their tokens for supported third-party apps when Identity Threat Protection identifies a change in risk.
Before you begin
- Ensure that your admin role has permission to manage apps. See the Application management section in Standard administrator roles and permissions.
- Ensure that Universal Logout supports the app that you want to configure.
- You must have a service account with the security provider whose app you want to configure.
- Obtain the credentials that you need to connect Okta to the app.
Start this procedure
Do this procedure in a SAML app that you've already integrated. To integrate an app, see Add existing app integrations, and then return to this procedure.
- In the Admin Console, go to .
- Select an app that supports Universal Logout. See Universal Logout .
- On the app's page, select the Authentication tab.
- In the Logout section, click Edit.
- Select Okta system or admin initiates logout.
- In the API configuration for logout section, enter your admin credentials for the app. The names of these fields are different for each vendor.
- Click Connect account, and then complete the app configuration in the pop-up window that appears.
- Click Save.