|
|
|
When configured to challenge requests for credentials, for authentication schemes other than basic, the SiteMinder TAI module redirects to a Web Agent to collect credentials. Because of this, verify that several Agent configuration parameters that apply to both Agent types have matching values.
The fcccompatmode Agent configuration parameter handles backward compatibility of forms credential collection, which the SiteMinder TAI does not support. You must therefore set this parameter to NO for both the SiteMinder TAI and the Web Agent:
fcccompatmode="NO"
The SiteMinder TAI does not support legacy encoding. Set the legacyencoding Agent configuration parameter to NO for both the SiteMinder TAI and the Web Agent:
legacyencoding="NO"
The secureURLs setting in the Agent Configuration Object does not affect the fcccompatmode and legacyencoding parameters – the SiteMinder TAI does not support them no matter what secureURLs is set to.
Note: The secureURLs parameter enables the Web Agent to encrypt all Siteminder query parameters in a redirection URL. When this parameter is set to yes, the Agents will encrypt query data when it returns an HTTP 302 status code (redirect response) to the browser. This functionality can be used when a requested resource is protected by an advanced authentication scheme. Use the SiteMinder Administrative UI to centrally set SecureURLs in the Agent Configuration Object.
Additionally, the following parameters must match for both the SiteMinder TAI and SiteMinder Web Agent if specified:
Note: Some configuration parameter values must also match for the SiteMinder JACC Provider, if configured. A complete list of Agent configuration parameters with interdependencies noted for all modules is included in Agent Configuration Parameters.
| Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |