Global Logout Behavior

global logout is an account level security setting that controls logout behavior for all users in your account when enabled, global logout ensures that users are signed out of all active sessions across all devices when they log out, providing enhanced security and centralized session management introduction global logout allows account administrators to choose between two logout behaviors session only logout (default) logs out only the current session global logout logs out all active sessions for the user across all devices note global logout is off by default , meaning session only logout is the default behavior benefits stronger security posture ensures all sessions are terminated when users log out, preventing unauthorized access from other devices centralized management logout behavior is explicitly controlled and centrally managed at the account level consistent user experience all users in the account follow the same logout behavior how to configure global logout note this is an account level setting that must be configured by an account administrator navigate to account settings click on the sessions & security tab expand the authentication section find the global logout setting toggle the switch labeled "enable global logout" off (default) session only logout users are logged out of their current session only on global logout users are logged out of all active sessions across all devices click save to apply the changes once configured, this setting applies to all users in the account what happens when global logout is enabled after a global logout, session invalidation may take a short time to propagate across all services during this window, some api calls might still succeed briefly before consistently returning 401 unauthorized during logout when you log out with global logout enabled current session you are immediately signed out of your current session all other sessions all active sessions on other devices and browsers are invalidated re authentication required you must log in again on any device where you want to access the application session invalidation all existing authentication tokens become invalid any attempts to use the application on other devices will require re authentication after logging back in users receive new authentication tokens and can resume normal operations on all devices what happens when global logout is off (default) when global logout is off (the default setting) session only logout only the current session is terminated when a user logs out other sessions remain active sessions on other devices and browsers continue to work normally no re authentication needed users can continue using the application on other devices without interruption seamless multi device access users can switch between devices without needing to log in again use cases when to enable global logout (turn on) enhanced security requirements your organization needs to ensure all sessions are terminated on logout for improved security compliance requirements regulatory or compliance policies require logging out from all devices high security environments working with sensitive data where session management is critical preventing unauthorized access ensuring that if credentials are compromised, all sessions are terminated when to keep global logout off (default) multiple device usage users regularly work across multiple devices and need seamless access user convenience users prefer not to re authenticate on all devices after each logout normal operations day to day operations where the default session only logout meets security needs productivity teams that frequently switch between devices benefit from persistent sessions important notes default setting global logout is off by default session only logout is the default behavior account level control this is an account level setting managed by account administrators that applies to all users in the account immediate effect when enabled, global logout takes effect immediately when any user logs out all devices affected when enabled, this setting affects all devices and browsers where users have active sessions setting persistence the global logout setting persists until changed by an administrator explicit and centralized logout behavior is centrally managed at the account level troubleshooting i am still logged in on another device after global logout ensure the global logout setting was enabled before you logged out wait a few moments for the session invalidation to propagate try logging out again with global logout enabled clear your browser cache and cookies on the other device the setting does not seem to work ensure you clicked save after enabling the setting verify you are logged in as an account administrator check that you are using the correct account settings page