AnsweredAssumed Answered

SiteMinder as ServiceProvider

Question asked by SamWalker on Aug 17, 2017
Latest reply on Aug 18, 2017 by SamWalker

Dear friends, I am woking on a POC setting up a federation partnership where SiteMinder acts as Service Provider and CA API Gateway acting as IDP implementing SAML 2.0 HTTP - POST binding.

I have good experience with SiteMinder as IDP.but this is my first attempt to configure SiteMinder as Service provider.

I have started on SiteMinder side based on bits and pieces of documentation I found. Not sure if this correct setup, appreciate any insights.

I have created a LocalSP Entity, RemoteIDP Entity.
I created SP -> IDP Partnership
Created SAML 2.0 authentication scheme matching IDP and SP entity IDs created in earlier steps
Created a domain, realm with SPS agent with SAML 2.0 authentication scheme.

When I access the protected resource, I get a message: Server Error. The server was unable to process your request.

No logs on SPS what so ever.

Policy Server traces show that auth scheme is loaded but nothing done:

[08/16/2017][22:20:09][4055243632][][][][][][][][][][][][][][LogMessage:INFO:[sm-Server-02750] Loaded authentication scheme SP SAML authentication. Version 1536 . TransactionMinder(tm) SAML authentication scheme][][][SmAuthServer.cpp:332][7143][22:20:09.351][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[08/16/2017][22:20:09][4055243632][][][][][][][][][][][][][][Entering SmAuthSaml SmAuthQuery. lpszParam data follows:][][][SmAuthSaml.cpp:920][7143][22:20:09.352][SmAuthQuery][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[08/16/2017][22:20:09][4055243632][][][][][][][][][][][][][][Query Parameter: SAML2:@21-0009c36d-fd37-1994-ba54-80740a98f021][][][SmAuthSaml.cpp:924][7143][22:20:09.352][SmAuthQuery][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[08/16/2017][22:20:09][4055243632][][][][][][][][][][][][][][SAML 2.0 auth scheme param found, returning SAML20 in buffer][][][SmAuthSaml.cpp:990][7143][22:20:09.352][SmAuthQuery][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[08/16/2017][22:20:09][4055243632][][][][][][][][][][][][][][Enter function CSm_Az_Message::SendReply][][][Sm_Az_Message.cpp:408][7143][22:20:09.352][CSm_Az_Message::SendReply][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]
[08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 150, data size is 39][03-00044584-0855-1995-ba54-80740a98f021][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][30 33 2d 30 30 30 34 34 35 38 34 2d 30 38 35 35 2d 31 39 39 35 2d 62 61 35 34 2d 38 30 37 34 30 61 39 38 66 30 32 31 ][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 204, data size is 39][06-0008f41e-08ab-1995-ba54-80740a98f021][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][30 36 2d 30 30 30 38 66 34 31 65 2d 30 38 61 62 2d 31 39 39 35 2d 62 61 35 34 2d 38 30 37 34 30 61 39 38 66 30 32 31 ][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 203, data size is 13][sps agent test][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][73 70 73 2d 70 6c 64 32 20 74 65 73 74 ][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 219, data size is 4][2048][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][32 30 34 38 ][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 220, data size is 6][** Not Shown **][][Sm_Az_Message.cpp:716][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][** Not Shown **][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 146, data size is 0][][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][Send response attribute 147, data size is 0][][][Sm_Az_Message.cpp:827][7143][22:20:09.352][CSm_Az_Message::FormatAttribute][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][IsProtectedEx][][][][][][][][][][][][][08/16/2017][22:20:09][4055243632][sps agent test][][][][][][][][][][][][sps agent][** Status: Protected. ][][][Sm_Az_Message.cpp:597][7143][22:20:09.352][CSm_Az_Message::ProcessMessage][][][Testing SP on Siteminder][][s27273/r7][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][][]

Outcomes