AnsweredAssumed Answered

CA SiteMinder SPS configuration:Authentication REST Interface requires input request to contain password in cleartext

Question asked by nagra13 Employee on Oct 30, 2015
Latest reply on Oct 30, 2015 by Hubert Dennis

Hi

As part of protecting webservices (REST) through SiteMinder SPS configuration as documented at Configuring the Authentication and Authorization Web Services - CA SiteMinder® - 12.52 SP1 - CA Technologies Documentati… the input request need to be passed with user credentials where password is in clear text. Is there any way we can pass encrypted text.

A URI in this format, http://hostname:port/authazws/AuthRestService/login/appID/Resource, posts the following request:

 

<loginRequest>

 

      <binaryCreds></binaryCreds>

       <password>user1</password>

       <userName>user1</userName>

       <action>GET</action>       

</loginRequest>

Outcomes