Policy Server GuidesPolicy Design GuideCA SSO/WAC IntegrationSiteMinder and CA SSO Integration Architectural Examples › Example 1: User Accesses SiteMinder-Protected Resource Before CA SSO

Previous Topic: SiteMinder and CA SSO Integration Architectural Examples

Next Topic: Example 2: Authenticated CA SSO Client User Accesses SiteMinder Resource
Example 1: User Accesses SiteMinder-Protected Resource Before CA SSO

The following example illustrates a user accessing SiteMinder-protected resource before a WAC-protected resource:

Use case graphic illustrating a user accessing a SiteMinder protected resource before CA SSO

  1. The user tries to access a SiteMinder-protected resource and the SiteMinder Web Agent/Secure Proxy Server intercepts the request. The user provides the Agent/SPS with authentication credentials.
  2. The Web Agent/Secure Proxy Server forwards the credentials to the SiteMinder Policy Server for validation.
  3. The SiteMinder Policy Server makes sure that the user’s credentials are valid in the user store.
  4. After successful authentication, the SiteMinder Policy Server requests that the CA SSO Policy Server to issue and return an CA SSO cookie for the SiteMinder user.
  5. The CA SSO Policy Server validates the user and forwards the user’s CA SSO Web authentication credentials to the SiteMinder Policy Server.
  6. The SiteMinder Policy Server forwards the CA SSO Web authentication credentials to the SiteMinder Web Agent/Secure Proxy Server.
  7. The SiteMinder Web Agent/Secure Proxy Server sets the CA SSO Web authentication and SiteMinder cookies in the user’s browser and returns the resource to the user.
  8. The user tries to access a CA SSO resource and the CA WAC Web Agent intercepts the request.
  9. The CA WAC Web Agent validates the user’s CA SSO Web authentication cookie credentials with the CA SSO Policy Server.
  10. The CA SSO Policy Server tells the CA WAC Web Agent that the user has valid credentials.
  11. The CA WAC Web Agent allows the user to access the SSO-protected resource.