Hi All, Below is the scenario and issue , any insight and help will be appreciated: Scenario : AD is used as user store , password policy is enabled on user directory with custom password service URL but we have disabled the password service on the authentication scheme. We do not see […]
Could you help me to understand this problem? The customer Environment: FQDN:message.***.***.co.jp – ***.***.co.jp (Additional IIS virtual site) WindowsServer2008(32bit) + IIS7.0 + WebAgent V6(Connect to V 12.7 Policy Server in compatibility mode) server production: message.***.***.co.jp_20150225-1 server wait : message.***.***.co.jp_20150225-2 ←the problem happen WebAgent.log —————————————————- [756/1768][Fri Nov 02 2018 13:40:01][CSmAdminManager.cpp:406][ERROR] ADMIN: Bad or missing encryption […]
We are doing upgrade from 12.52 to 12.72. We have installed/configured policy server, SPS and Fed components on separate VMs. Now our old Components are co-existing with new components on Win 2012R2. All Policy Servers are referring to single Policy/Key Store. Policy Servers on all the Web Agents SMHost.config files have been updated to point to […]
Hello, I need to better understand what kind of information are being logged by the CustomLog proccess on the SPS server. This is how my CustomLog is configured in the httpd-ssl.conf: LogFormat “%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x “%r” %>s %b %D %k” sslLog CustomLog “|bin/rotatelogs.exe D:/Logs/apache/cipher.%Y-%m-%d.log 86400” sslLog We’ve made a few customisations […]
I have an existing site A protected with CA SSO Web Agent with DirA using username attribute for user disambiguation and DirB for user authorization. DirA is mapped to DirB by UniversalId (cn). Now I implemented Google OAuth 2.0 authentication. All social ids are stored in DirA ssoopenid multivalue attribute. Google sends customer’s email in […]
When we receve information from an IDP, it’s included to the SMSAMLDATA. Is there a way to transfert some information to the SMSESSION? Source: New feed {pubDate}
Is there a service available in CA SSO (or SPS) to return decrypted information from SMSAMLDATA cookie?
No commentIs there a service available in CA SSO (or SPS) to return decrypted information from SMSAMLDATA cookie? Source: New feed {pubDate}
Hi All, We wanted to know the limitation of the approach of configuring multiple agent configurations for application pools as mentioned in the below link. Configure Multiple Agent Configurations for Application Pools – CA Single Sign-On – 12.52 SP1 – CA Technologies Document… Any help will be much appreciated. Thanks, Saif Source: New […]
Hi, I’m looking for a way ( .fcc/.sec file) which will allow me to do re or stepup authentication for already Authenticated user. I have tried couple of custom .fcc but it fails when I don’t send any username to it, works fine when username is entered, however as user is already logged in , […]
The customer want to get default HTTP ‘ s value and use custom header name at AdminUI response. Like using name SM_UID to get SM_SERVERSESSIONID’s value. I provide the connection to customer but this way cannot do what they want to do. https://comm.support.ca.com/kb/smuser-header-value-in-iwa-authentication-scheme/kb000040906 Maybe this way is overwrite the default value by custom name. […]