AnsweredAssumed Answered

Custom Auth Scheme error - CA Advanced Auth config with CA SSO

Question asked by Kshipra on Jun 8, 2017
Latest reply on Oct 24, 2017 by techsarwan

Hi All

 

I am trying to implement CA Advanced Auth integrated with CA SSO in Dev env.

 

Risk Minder , Strong Auth, Adapter are all installed on a single server while Policy server on another. 

 

CA SSO Policy server - 12.6

Risk Minder/ Auth Minder ver 8.2.1

CA webagent- 12.52 SP1

All Windows2012 R2.

 

I am following below link for setup:-

https://docops.ca.com/ca-advanced-authentication/8-2-1/en/installation/ca-adapter-installation/configuring-ca-single-sign-on-policy-server 

 

I am getting below error in PS Trace logs while trying to access HTML page protected using Custom Auth scheme.

"Reject s47/r2 : internal error - failed to obtain scheme credentials for scheme 'AAAuthScheme' "

I configured Custom auth scheme as below as per CA Guide.

Library = ArcotSiteMinderAdapter

Parameter = Name of the Adapter profile which I created.

Left Secret/Confirm Secret blank.

 

I came across this TechTip link yesterday Tech Tip - CA Single Sign-On:How to integrate CA SSO with CA Advanced Authentication@Tech Tip - CA Single Sign-On:How to integrate CA SSO with CA Advanced Authentication 

 

The TechTip states below-

"Copy adaptershim.ini from AFM_HOME/conf/afm folder to the following location on the system where CA Single Sign-On Policy Server is hosted: <ARCOT_HOME>/conf

 

Note :

In CA SSO 12.52 SP1 and 12.52 SP2 , <ARCOT_HOME> environment variable points to <PS_Install>/aas folder by default."

 

The problem is that Policy Server ver 12.6 does not have "aas" folder installed by design. Also no ARCOT_HOME variable. How to complete this setup with@ PS 12.6

 

Please help me resolving the above error.

Outcomes