This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 34%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
Hello,
I have searched low and high for a solution but could not find a definitive answer if my problem can be solved. Even just knowing that it cannot be solved would be extremely helpful.
We have a single identity service that has two DNS names assigned to it, and want to enable federation to a ADFS 3.0 RP. Requests to our identity service can come to either domain. The federated login is successful for all requests, independent of the domain, however, the logout callback from the ADFS 3.0 RP would always go to the first (default) configured SAML Logout Endpoint, irrespective from which domain the request came from. This creates downstream issues with cookies from our identity service being handled on the wrong domain, when the logout request did not come from the default domain.
I have tried using wreply to tell the RP which logout endpoint it should call, but the parameter got ignored.
I have found various suggestions in forums and blogs that say that two logout URLs are effectively not possible with ADFS 3.0 but no definite answer.
If anybody has had this scenario working, it would be great to know.
Kind Regards,
Florian
Ensure that you are accounting for time zone differences between Outlook and Google Calendar. Both events should be in the same time zone, or you may need to convert the time appropriately during the mapping.