AnsweredAssumed Answered

Integration with CA Single Sign-On (Siteminder)

Question asked by tkongpachith on Sep 25, 2018
Latest reply on Oct 1, 2018 by DirkBleyenberg

Hi All,


I am trying to integrate with Single Sign-On for the first time with the API Gateway.

What are the steps? Are there any prerequisites that I need to accomplish prior?


I have already installed the Siteminder SDK referred from the Release Notes 9.3, moved that file to my /home/ssgconfig directory on the Gateway's shell. Then on the Policy Manager was able to go to Tasks > Extensions and Add-Ons > Manage Solution Kits and import the Siteminder .sskar file and resolve the conflicts for post-installation tasks. I have also added the fields to my file:

org.apache.tomcat.util.http.ServerCookie.ALLOW_EQUALS_IN_VALUE = true


Are there other tasks I need to do before I continue?


Do I just need all the information on the CA SSO side for configuration and validating that it works? Like for instance, the configuration when I apply an assertion relating to SSO i.e. the Check Protected Resource Against CA Single Sign-On assertion when it prompts for:

- Configuration Name

- Agent

- Protected Resource

- Action

- Server Name

- Source IP

- Prefix Variable


Please let me know! Or would trying SSO with API Portal be an easier task to integrate?