Jump to content
Welcome to our new Citrix community!

Netscaler VPN with Azure Authentication - Session not ending on logout

Rowen Gunn

Recommended Posts



I'm having an issue where I've setup a new SSL VPN on my Netscaler VPX and then setup Azure to my by SAML authentication service. Users can log in via web portal and client, everything works, EXCEPT when the user clicks Logoff on the VPN client the session does not end on the Netscaler. The user's session sits there until the 90 minute session profile idle timer expires. This leaves lingering sessions on the VPN as users have logged off from their side by the Netscaler keeps their sessions alive, like it never got the logoff session command somehow.


VPX: 13.1-33.54

Link to comment
Share on other sites

Answer to this was two parts:


In Azure SAML config, enter this as the Logout URL https://vpn.yourdomain.com/cgi/logout

On the Netscaler side, in the SAML server settings page, set Reject Unsigned Assertion* to OFF


After making those changes when users log off the VPN via the client the session ending is now reflected on the Netscaler as well.

  • Like 1
Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...