Hello, I am trying to set up an env comprising of ca access gateway ( R12.8 ) for oidc provider. While accessing ca access gateway, it is throwing the error. Below error is being logged in the ca access gateway apache’s: “GET /affwebservices/CASSO/oidc/authorize?response_type=code&scope=openid%20email%20fullname%20userDetail&client_id=a8ce52b6-c919-4c39-ac1d-96f9b18e83d4&state=M7sP7fTo__jTixRl8roHnvrPwDI&redirect_uri=http%3A%2F%2Ftest.application.com%2F&nonce=_lTndEQB00pw5DGXt9jFPlX8em0_sf1Sv6E_q98qlIw HTTP/1.1” 404 – This ca access gateway is acting as backend […]
Hi, In the federation partnership in the the assertion attribute field I need to check the value of employeetype) from AD and if that value equals C i need to concatenate C with the employeeid field in the assertion attribute. Please suggest how to implement this. Thanks, Pallavi. Source: New feed {pubDate}
A customer needs to submit firewall request to open web traffic to allow administrator access CA Access Gateway Admin Interface (ProxyUI). Customer using the default ports. My guess is Ports 80, 8080 and 443 (ssl). is there any other port that needs to be opened ? Thanks. Source: New feed {pubDate}
Hi, I have created OpenID Autehtnication scheme and protected application with this scheme. I am accessing the application, am getting below error in PS trace log. Can you suggest what could be the issue? i have configured the FCC file and openID provide xml file in scheme . env: CA SSO r12.8 Reject […]
Hello Folks, We have an existing r12.52 environment and we installed a fresh r12.8.1 environment in parallel to the current environment. The r12.8 server is now fully setup and initialized and we’re able to login to the AdminUI. Our next step is to export the data from the r12.52 policystore and import it into […]
Failed to create delegated GSSAPI token on behalf of HTTP/***.id-test.****.***@****.*** for smps/n**1-pps***-1.****.***: Minor Status=-1765328370, Major Status=851968, Message=KDC has no support for encryption type
No comment
adawe01, SungHoon_Kim Patrick-Dussault, How to resolve, why do i see this error, I have followed Document ID : KB000046427 and also followed step by step as documented by SungHoon and i have provided the SPN value of LB FQHN. Delegation is enabled. But i still get this error. Have created the keytabs with AES256, but as […]
Hi All, We are in-progress of automating the OPENIDConnect provider migration from one environment to another environment. Could you please help me to understand, does this something different than siteminder domain object migration ? What is the root object for authorisation provider and client to export from one environment ? Thanks Sasi Source: […]
The scenario is two applications are configured to use CA SSO/SAML for authenticatication. The user logs into first app and the app has some service end points from the second App (which is again configured for CA SSO/SAML authentication enabled). Is it possible to configure CA SSO to authenticate for both apps simultaneously when the […]
Hi Folks, In process of upgrading from r12.52 to r12.8.1, I did a clean install of the r12.8.1 policy server on a new RHEL VM and now trying to launch the SMConsole to configure the PS. I have an SSH session to the server and confirm that X-Windows is working by launching “xclock” and […]
Where to find .kcc and other files required for credential collector in CA Access Gateway? Source: New feed {pubDate}