AnsweredAssumed Answered

Custom Auth Scheme error - CA Advanced Auth config with CA SSO

Question asked by Kshipra on Jun 8, 2017
Latest reply on Oct 24, 2017 by techsarwan

Hi All


I am trying to implement CA Advanced Auth integrated with CA SSO in Dev env.


Risk Minder , Strong Auth, Adapter are all installed on a single server while Policy server on another. 


CA SSO Policy server - 12.6

Risk Minder/ Auth Minder ver 8.2.1

CA webagent- 12.52 SP1

All Windows2012 R2.


I am following below link for setup:- 


I am getting below error in PS Trace logs while trying to access HTML page protected using Custom Auth scheme.

"Reject s47/r2 : internal error - failed to obtain scheme credentials for scheme 'AAAuthScheme' "

I configured Custom auth scheme as below as per CA Guide.

Library = ArcotSiteMinderAdapter

Parameter = Name of the Adapter profile which I created.

Left Secret/Confirm Secret blank.


I came across this TechTip link yesterday Tech Tip - CA Single Sign-On:How to integrate CA SSO with CA Advanced Authentication@Tech Tip - CA Single Sign-On:How to integrate CA SSO with CA Advanced Authentication 


The TechTip states below-

"Copy adaptershim.ini from AFM_HOME/conf/afm folder to the following location on the system where CA Single Sign-On Policy Server is hosted: <ARCOT_HOME>/conf


Note :

In CA SSO 12.52 SP1 and 12.52 SP2 , <ARCOT_HOME> environment variable points to <PS_Install>/aas folder by default."


The problem is that Policy Server ver 12.6 does not have "aas" folder installed by design. Also no ARCOT_HOME variable. How to complete this setup with@ PS 12.6


Please help me resolving the above error.