The SiteMinder Agent for IBM WebSphere does not support SiteMinder session management. (However, each SiteMinder Agent module honors SiteMinder session idle and max timeouts.)
To interoperate with WebSphere SSO, WebSphere SSO must be enabled. When WebSphere SSO is enabled, the SiteMinder TAI is not invoked for subsequent HTTP requests once the WebSphere SSO token is set in the HTTP client. Therefore, the SiteMinder TAI cannot intercept every HTTP request to enforce SiteMinder session management by updating the SiteMinder session cookie. Based on this, WebSphere is the session controller for any user session within the WebSphere environment; thus, sessions must be synchronized between WebSphere and the SiteMinder Agent.
Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |