Agent GuideConfiguring the SiteMinder Agent, SiteMinder-SideConfigure the TAI, SiteMinder-SideConfigure the TAI to Only Handle Requests from SiteMinder Session Holders › Enable the PrevalidateCookie Agent Configuration Parameter

Previous Topic: Disable the ChallengeForCredentials Agent Configuration Parameter

Next Topic: Set the AssertionAuthResource Agent Configuration Parameter
Enable the PrevalidateCookie Agent Configuration Parameter

When you configure the SiteMinder TAI not to challenge requests for credentials, add the PrevalidateCookie Agent configuration parameter to the associated Agent Configuration Object or Agent configuration file and set it to YES.

When not challenging for credentials, enabling this option configures the SiteMinder TAI to validate that the SiteMinder session ticket is valid (not corrupt, expired, can be decrypted, and so on). If the session ticket is good, the SiteMinder TAI processes the request. If the session ticket is not valid, The SiteMinder TAI returns FALSE and does not process the request.

This parameter is not used if ChallengeForCredentials=YES or if there is no SiteMinder session ticket in a request.

For example:

PrevalidateCookie=YES