SiteMinder TAI Forms Authentication Scheme Failures

Agent Guide › Troubleshooting › SiteMinder TAI Forms Authentication Scheme Failures

SiteMinder TAI Forms Authentication Scheme Failures

Forms authentication schemes configured to challenge users for the SiteMinder TAI result in authentication failures. Symptoms of Forms authentication failures might include:

The forms authentication scheme is not working with the Web Agent you specified for redirecting FCC (forms credential collectors).
After providing credentials to Forms authentication, WebSphere challenges again.

Log Message	Possible Cause	Proposed Solution
Web Agent log: DoIsProtected - Policy Server authorization logs may contain more detail. loginUser - Exiting with HTTP 500 Server Error: 20-0003.	EncryptAgentName= YES in TAI Agent Configuration object EncryptAgentName = NO in Web Agent Configuration object	Set the same value for the EncryptAgentName Agent configuration parameter for both the SiteMinder TAI and Web Agent. That is, set both to yes or both to no.
Web Agent log: SmCredCore::ResolveAgentName - Error decrypting agent name. loginUser - Exiting with HTTP 500 Server Error: 00-0001	EncryptAgentName= NO in TAI Agent Configuration object EncryptAgentName = YES in Web Agent Configuration object
	The FCCcompatmode parameter is not set correctly.	The FCCcompatmode parameter should always be set to NO for the SiteMinder Agent. For more information about this parameter, see Disabling FCC Compatibility and Legacy Encoding.
	The Policy Server domain has multiple user directories with the same user.	Move the user directory name you configured with WebSphere to first place on the list.

Email CA Technologies about this topic