If you have configured Okta as a 3rd Party IDP in Workspace ONE you might have noticed that the "Logout" function in Workspace ONE doesn't log you out of your Okta session. The reason for this is that Okta does not include the "SingleLogoutService" by default in the metadata that is used when creating the 3rd Party IDP in Workspace ONE.
There are a couple extra steps that you need to do to enable this functionality. Before you begin, please make sure you download your signing certificate from Workspace ONE.
Log into Workspace ONE
Click on Catalog -> Settings (Note: Don't click the down arrow and settings)
Click on SAML Metadata
Scroll down to the Signing Certificate and Click Download
Now you will need to log into your Okta Administration Console.
.Under Applications -> Click on the Workspace ONE application that you previously created
Click on the General Tab
Under SAML Settings -> Click Edit
Click on "Show Advanced Settings"
Enable the Checkbox that says "Enable Single Logout"