I am trying to disable the msisipselectionpersistent cookie, as I want my users to always be able to choose between the identity providers.
If I do not use a Web Application Proxy, and execute the following command on the ADFS server, everything works as expected:
set-adfswebconfig
-HRDCookieEnabled $false
However, if I do use a Web Application Proxy, I have to:
1. choose identity provider
2. login
3. I get redirected to the HRD page instead of my secured web app
4. choose identity provider again
5. Finally, I get redirected to my secured web app
This seems like a bug to me. I do not want to use the msisipselectionpersistent, as the shortest lifetime of this cookie is 1 DAY. 1 day is way too long. If I could set this to e.g. 1 minute, this would also be a solution.
Can anyone confirm this bug?