Symantec Access Management

  • Private Community

  • 1.  Agent for Sharepoint as IDP

    Posted Mar 14, 2017 02:21 AM

    Hello,

     

    In our environment, we need a SAML identity provider to be configured so that it can be used by SAPGUI for consuming the identity of the users as per the below link:

    https://blogs.sap.com/2015/01/29/saml-20-sso-for-sapgui/

    We don't have federation in our environment, so can we use agent for Sharepoint as an identity provider in such a way that its metadata xml file can be generated and used by the service provider as per the below link:

    Trusting an Identity Provider - SAP Documentation 

     

    Requesting suggestions on the same.

     

    regards,

    Aditi



  • 2.  Re: Agent for Sharepoint as IDP
    Best Answer

    Broadcom Employee
    Posted Mar 14, 2017 09:45 AM

    Hi Aditi,

     

    Per the "CA SiteMinder® Agent for SharePoint 12.52 Platform Support Matrix, the Agent for SharePoint is only supported with SharePoint resources on the backend.

     

    Following is from the PSM at the following link;

     

    https://support.ca.com/phpdocs/7/5262/5262_SiteMinder_Agent_For_SharePoint_12_52.pdf

     

    3. SiteMinder Agent for SharePoint r12.52 supports:
    a. SharePoint 2010 Foundation, Server and Enterprise editions.
    b. SharePoint 2013 Foundation, Server and Enterprise editions
    c. SharePoint web applications in claims mode only; web applications in Windows classic mode are not supported.

     

    The proper solution would be to install the CA Access Gateway (fka Secure Proxy Server) with the Federation Gateway enabled.  The CA Access Gateway is available under the standard SiteMinder Licenses while the Agent for SharePoint requires a separate license.

     

    Hope this helps,

     

    Rick