This article explains the behavior when a Web Services Federation (WS-Federation) logout request is initiated from a Relying Party (RP). Auth0 automatically propagates the logout to the upstream Identity Provider (IdP), which results in users being signed out of all upstream IdP services in their browser.

• WS-Federation
• Federated Logout
• Upstream IdP

This behavior is by design. Auth0 automatically triggers a federated logout to the upstream IdP whenever a WS-Federation logout request (wa=wsignout1.0) is received from an RP.

Currently, there is no configuration option to disable this behavior.