Hi All, We configured Siteminder as Service provider and getting below error on IDP initiated flow, we cannot allow SP initiated flow in this case. Can someone please suggest what might be going wrong here. I have setup done for User Identification and we are getting LOGINID in SAML from IDP. Please note […]
Team, As part of ISAM(IBM TAM) to CA SSO migration project, I am looking for ISAM and CA SSO co-existence design approaches to enable mutual SSO. Please let me know your thoughts. Regards Ashok CA Security Source: New feed {pubDate}
Hi Team, is it mandate to set up KRB5_CONFIG as Env variable for Kerberos configuration. If not what could be the workaround for this. Since KRB5_CONFIG is already used by authentication bridging and it can’t be used again, as it might mess up our current authentication bridging. and this is set to /opt/CA/uxauth/uxauth.ini file in […]
Hi, I have recently done installation of CA Single Sign On 12.8 and CA Directory 14.0 on Linux servers. Post that, when trying to access a protected application I am getting the below error in smps.log file on policy server, [12168/139947420665600][Tue Nov 20 2018 07:30:56][SmDsLdapConnMgr.cpp:1207][ERROR][sm-Ldap-02230] Error# ‘1’ during search: ‘error: Operations error extended […]
Hello, I have been having trouble setting up site minder with Advanced Authentication integration. I have been getting the following errors after trying to authenticate with a user in SSO: 1. The screen will refresh as if nothing happened. 2. The UI will display “Error in displaying the original user message.Contact Administrator. 3. THe […]
Hi, We have Cyberark integrated with CA SSO 12.7 (using SAML) now we have requirement to implement Azure cloud MFA.Earlier CA suggested the given below flow : CA SSO will challenge the user for Credentials. CA SSO Web Agent will collect the user name / password / token.CA SSO Policy Server will validate the username […]
Hi All, I am trying to configure multiple Webagent instance in CA Access Gateway. Where I am looking not to create multiple instance of proxy. Scenario: Single instance of Tomcate(proxy engine) and multiple instance of Webagent pointing to different ACO. Is this possible? Any advice would be great. Regards, Joseph Christie […]
If we have more than one policy server in our environment, do all policy servers should have the same key value in their encryptionkey.txt file while get generated during policy server installation? Source: New feed {pubDate}
Is it possible that first time users coming to SP their accounts are automatically created?
No commentScenario: SiteMinder is the SP. we have a valid partnership setup with an IDP. What we want is that users who authenticated and is coming with a valid SAML token to SP. If the users are not in the look up directory then is it possible that their account is automatically created in SP and they […]
We have a problem with SAML response generated by Siteminder version 12.0.305.428 truncates one of the attribute and eventually application login is failing. Is there a way we can increase the attribute length for SAML attributes in Siteminder version 12.0.305.428? Please let me know. Source: New feed {pubDate}