Symantec Access Management

  • Private Community

  • 1.  CA siteminder auth - mobile vs non-mobile

    Posted Oct 06, 2016 03:03 PM

    We are using CA siteminder (12.52) for SSO. We have a requirement to use different authentication mechanisum for mobile and non mobile traffic for the same siteminder protected resource (app URL is same). Eg: enable cert auth for mobile traffic and enable form auth for non mobile traffic. In siteminder out of the box solution, we can have only one auth scheme for a given resource (realm).

     

     

    Any thoughts on how this can be done ? Appreciate your input.

     

    Thanks,



  • 2.  Re: CA siteminder auth - mobile vs non-mobile

    Posted Oct 06, 2016 04:44 PM

    Have a look at this thread:

    https://communities.ca.com/thread/241761929



  • 3.  Re: CA siteminder auth - mobile vs non-mobile

    Posted Oct 06, 2016 04:50 PM

    Hi Chandra, We have the same issue. At this point,  we are looking at apache to identify user-agent to apply a reverse proxy rule , and forward users to  different context roots which are tied to different auth schemes in SiteMinder.

    Honestly it is siteminder's job to provide but there is no OOB solution from what I heard. Please share your thoughts and how you intend to proceed as well. Thank You.



  • 4.  Re: CA siteminder auth - mobile vs non-mobile

    Posted Oct 06, 2016 05:25 PM

    Hi Anil, 

     

    I agree. It makes more sense to have this feature OOTB. 

    Unfortunately, that is not the case right now.

     

    Regards,

    Ujwol