Do we need do use "glide.security.url.whitelist" property to set MutliSSOLogout =true?

Shraddha desai · ‎11-28-2022

Hello,

In our Installation Exit "MutliSSOLogout" is active-false and MultiSSOLogoutV2 is active-true then to set MutliSSOLogout =true do we need to create "glide.security.url.whitelist" property ?

Thank You!

Prutha Joshi · ‎11-28-2022

Hi Shradhha,
The glide.security.url.whitelist property can be used to add extra layer of validation to ensure whether any external URL introduced should be a part of inclusion listed URLs.
Please refer below:

1. URL allow list for logout redirects (instance security hardening)

There were also few issues reported regarding this property - The fix is provided for such issues on below link

2.Multi-SSO (SAML 2.0) errors and fixes

View solution in original post

Prutha Joshi · ‎11-28-2022

Hi Shradhha,
The glide.security.url.whitelist property can be used to add extra layer of validation to ensure whether any external URL introduced should be a part of inclusion listed URLs.
Please refer below:

1. URL allow list for logout redirects (instance security hardening)

There were also few issues reported regarding this property - The fix is provided for such issues on below link

2.Multi-SSO (SAML 2.0) errors and fixes

Hanumath Bhagav · ‎12-19-2022

@Prutha Joshi @Shraddha desai

In our Instance ,

MultiSSOLogout - TRUE

MultiSSOLogoutv2 - FALSE

Can you please advice how value should we configure for this property ? How do we get that ? Can you please share some screen shots ?I am looking for the value to be added while setting this property.Kindly help.

TIA

Rajini2 · ‎01-05-2023

Did you find what to add to the Value?

Hanumath Bhagav · ‎01-16-2023

@Rajini2 ,

As per the docs, value should be

Your organization's approved URLs [Some Defined FQDN (Fully Qualified Domain Name) Ex. http://www.servicenow.com]