When you configure the SiteMinder TAI not to challenge requests for credentials, add the PrevalidateCookie Agent configuration parameter to the associated Agent Configuration Object or Agent configuration file and set it to YES.
When not challenging for credentials, enabling this option configures the SiteMinder TAI to validate that the SiteMinder session ticket is valid (not corrupt, expired, can be decrypted, and so on). If the session ticket is good, the SiteMinder TAI processes the request. If the session ticket is not valid, The SiteMinder TAI returns FALSE and does not process the request.
This parameter is not used if ChallengeForCredentials=YES or if there is no SiteMinder session ticket in a request.
For example:
PrevalidateCookie=YES
Copyright © 2010 CA. All rights reserved. | Email CA Technologies about this topic |