Symantec SiteMinder

 View Only

Latest Knowledge Base Articles  for Single Sign-On (Formerly CA SiteMinder) [25/1/2016]

By Ujwol posted Jan 24, 2016 06:52 PM

  

Hello CA Single Sign-On Community Users,

 

Please find below the list of the latest Knowledge Base Articles  for Single Sign-On (Formerly CA SiteMinder) published or updated since 1-Jan-2016 for your reference:

 

SiteMinder not setting HTTP header with underscore in the name in Apache 2.4
SiteMinder not setting HTTP header with underscore in the name in Apache 2.4
Last Update: 1/22/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1712544

deeplinks in siteminder
How to configure deeplinks in Siteminder federation
Last Update: 1/22/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1120114

12.52 SP1 CR02 Adminui Failure when attempting to add a user directory to a Domain
Adminui Failure when attempting to add a user directory to a Domain
Last Update: 1/22/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1908608

How to Enable SPS logs
How to Enable Secure Proxy Logging to help troubleshoot
Last Update: 1/22/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1528615

How to configure RiskMinder component at the Policy Server manually
You configured the Policy Store manually and find the RiskMinder component is not configured. You try to configure CA Gateway(SPS) and its tomcat service is crashing. You are trying to configure SessionAssurance but Policy Server RiskMinder is not working
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1356284

Is RelayState part of signature verification?
SP Initiated Federation is resulting in Failed to Verify Signature. IDP Initiated Federation is working fine. Comparing the working and failing SP Initiated Federation appears to be change in the RelayState query parameter.
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1247034

How to protect SOI using Apache Proxy Server (with CA Single Sign-On enabled)
You already have CA Single Sign-On in your environment and want to extend its SSO to your new SOI(CA Service Operations Insight). You have Apache Proxy Server (That is CA SSO enabled) in front of SOI and would like to seamlessly SSO to SOI.
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1872722

Configuring SNMP Agent for CA Single Sign-On
You have a SNMP based Monitoring tool and would like to poll CA Single Sign-On Policy Server to get statistics. You have a SNMP based Monitoring tool and would like Policy Server to send trap messages to this tool for critical events.
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1841322

Failing to run XPSExport with error "Administrator is disabled." but the user is not in disabled state.
Unable to export policy store using XPSExport and getting error message "Administrator is disabled." but the CA Sigle Sign-On Administrative account is not disabled.
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1764036

How to configure APS (Advanced Password Services) Help Desk Interface (APSAdmin)
Following steps will guide you through configuring APS Help Desk Interface starting with SiteMinder release r12.5 and higher.
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1686359

SiteMinder SDK failing to search user post r12.52SP1 upgrade
User Directory search using SmDmsSearch API is failing to fetch user
Last Update: 1/21/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1383062

@username=%USER% and @smretries=0 are shown when accessing login.fcc
Accessing an Apache 2.2 server protected with the SiteMinder Webagent, using the login.fcc form, the @username=%USER% and @smretries=0 are shown on the top of the form. This is caused by the hostname containing an underscore "_" character
Last Update: 1/20/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1755981

After installing WAMUI 12:52 sp1 CR02 objects are no longer accessible
Accessing any object in WAMUI produces java.lang.NullPointerException and verifying the server.log and boot.log one can see messages "A number format exception was encounter transforming the values to longs for comparison". Policy Store upgrade required
Last Update: 1/20/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1233251

Bad or missing context 'SESSION struct' in web agent log
Information about error message Bad or missing context 'SESSION struct'
Last Update: 1/19/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1360043

Agent configuration could not be loaded when startup JBoss agent
When startup JBoss server after configure JBoss agent, it gave "Agent configuration could not be loaded" in JBoss server log
Last Update: 1/19/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1136679

Information about Response attributes 224
Policy server log show set response attribute 224. Provide information regarding this response attribute.
Last Update: 1/14/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1406651

Audit log show SM_STATUS "Server is Configured to Deny Anonymous Binds"
In audit log, field SM_STATUS="Server is Configured to Deny Anonymous Binds" In policy server trace log: [err=ErrCode: 48 ErrMsg: Server is Configured to Deny Anonymous Binds Ext ErrCode: Ext ErrMsg: Server is Configured to Deny Anonymous Binds Matched DN
Last Update: 1/14/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1029872

Configure CA Directory as a user directory for SiteMinder Advanced Password Services.
How to configure CA Directory as a user directory for SiteMinder Advanced Password Services.
Last Update: 1/13/2016    Size: 82 kb    Type: Knowledge Base Articles    ID: TEC1919596

Current Sockets Off
SiteMinder team says the current socket count metrics are off. They are comparing the smpolicyrv -stats command output on connections to the two socket metrics.
Last Update: 1/13/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1025309

Web Agent does not log its cache utilization nor how many authentications it has performed in its log files, then how can you check the statistics?
When you don't have OneView monitor or Wily Instroscope configured, you can still get cache utilization and other statistics by capturing the SMMON data in the Policy Server trace log (smtracedefault.log) that is sent by Web Agent.
Last Update: 1/13/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1479852

Why suddenly Policy Server permanently fails to connect to AD user/policy store via LDAPS connection?
Wrongly updated Active Directory Certificate may cause Policy Server permanently fails to connect to AD user/policy store via LDAPS connection. Issuing a new certificate using "Domain Controller" template resolves this problem.
Last Update: 1/13/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1436002

JBoss server throws Failed to get Enterprise certificate with JBoss agent enable
After configure JBoss agent and startup JBoss server, the JBoss server log give Enterprise certificate error ie: SM_WSC_03502 - Failed to get Enterprise certificate: java.lang.RuntimeException: SM_WSC_03503 - Could not retrieve the configured enterprise c
Last Update: 1/11/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1517733

Configure SiteMinder Administrative UI for HTTP (non SSL) connection
This article guides how to configure Administrative UI for HTTP (non SSL) connection
Last Update: 1/11/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1159552

JBoss agent unable to handshake with policy server while trusted host registration is successful.
After trusted host registration success, starup JBoss agent and policy server report handshake error with JBoss agent. JBoss server log gave Shared secret invalid.
Last Update: 1/11/2016    Size: 82 kb    Type: Knowledge Base Articles    ID: TEC1069845

How to enable SSL on proxy UI
How to setup of SSL for access to Secure Proxy Server : Administrative User Interface (proxyui)
Last Update: 1/11/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1558209

Cluster vs Non-Cluster Load Balancing
What is the difference in the Policy server load balancing mechanism when they are configured in Cluster vs Non-Cluster configuration.
Last Update: 1/11/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1696224

Policy Server Access Log Events
What are the various access log events and when are these events logged into the smacess.log (text based audit log) or audit database
Last Update: 1/11/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1417454

Can the Authentication Method Be Changed in a PIM/SSO Integration?
This document explains how the PIM integration would be affected if the CA SSO authentication method was changed.
Last Update: 1/5/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1318367

Policy Server :: HouseKeeping Thread
Explanation about what's the housekeeping thread of the Policy Server
Last Update: 1/5/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1240435

Web Agent :: Apache : @username=%USER% @smretries=0 @smheaders=sm_sdomain
Explanation how to get rid of the code shown in a login.fcc page when running on Apache
Last Update: 1/5/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1950321

Policy Server :: HouseKeeping Thread LDAP Request : xpsCategory
Explanations about the meaning of the filter elements of the housekeeping thread when Policy Store is LDAP
Last Update: 1/5/2016    Size: 83 kb    Type: Knowledge Base Articles    ID: TEC1091288

  

Please note that you can always access the full list going to the following link:

http://www.ca.com/us/support/ca-support-online/support-by-product/ca-single-sign-on.aspx?d=t&language=en&type=Knowledge&…

 

Feel free to post your questions in the community if you have question about any of these KB article.

 

Best Regards,

Ujwol Shrestha

Principal Support Engineer

CA Technologies

0 comments
3 views