Previous Topic: SiteMinder and CA SSO Integration Architectural Examples

Next Topic: Authenticated CA SSO Client User Accesses SiteMinder Resource

User Accesses SiteMinder-Protected Resource Before CA SSO

The following example illustrates a user accessing SiteMinder-protected resource before a WAC-protected resource:

Use case graphic illustrating a user accessing a SiteMinder protected resource before CA SSO

  1. The user tries to access a SiteMinder-protected resource and the SiteMinder Web Agent/Secure Proxy Server intercepts the request. The user provides the Agent/SPS with authentication credentials.
  2. The Web Agent/Secure Proxy Server forwards the credentials to the SiteMinder Policy Server for validation.
  3. The SiteMinder Policy Server makes sure that the user's credentials are valid in the user store.
  4. After successful authentication, the SiteMinder Policy Server requests the CA SSO Policy Server to issue and return an CA SSO cookie for the SiteMinder user.
  5. The CA SSO Policy Server validates the user and forwards the user's CA SSO Web authentication credentials to the SiteMinder Policy Server.
  6. The SiteMinder Policy Server forwards the CA SSO Web authentication credentials to the SiteMinder Web Agent/Secure Proxy Server.
  7. The SiteMinder Web Agent/Secure Proxy Server sets the CA SSO Web authentication and SiteMinder cookies in the user's browser and returns the resource to the user.
  8. The user tries to access an CA SSO resource and the eTrust WAC Web Agent intercepts the request.
  9. The eTrust WAC Web Agent validates the user's CA SSO Web authentication cookie credentials with the CA SSO Policy Server.
  10. The CA SSO Policy Server tells the eTrust WAC Web Agent that the user has valid credentials.
  11. The eTrust WAC Web Agent allows the user to access the CA SSO-protected resource.


Copyright © 2010 CA. All rights reserved. Email CA about this topic