This feature is based on JavaScript injections. As you may know, CA PAM provides its own “Xceedium Browser” where we can execute any piece of JavaScript code. That allows us to simulate user actions and populate credentials automatically.
In the “Web SSO Learn Mode”, administrator marks username/password fields and optionally “Login” button (it’s optional because if web application uses HTML forms then we can automatically submit form without knowing login button). When administrator saves Web SSO configuration, JavaScript searches for all “input” elements (e.g. text, password, select, checkbox, etc.) and saves their values/state (including markers for username and password field and login button) in JSON format. Then this JSON data is stored into CA PAM database.
During the Web SSO login, JavaScript automatically populates the values and state taken from JSON for all input elements on the login page as they were configured in the Lear Mode. For username and password fields, it sets the values taken form credentials configured on the CA PAM Policy page.
In the end, JS code submits the form or clicks on the login button to apply the action.