Symantec Access Management

Have a question for you,  use Siteminder to protect a Web APIs written using ASP.NET Core 2.1. These web API’s uses SAP data that exposed through SAP Web service endpoints. These services are credential protected and access over https. During the test is used http requests (not https) to the Web API and then https from Web API to SAP. This was working well without Siteminder agents enabled for the web APIs. Once SiteMinder Agent is enabled couldn’t establish SAP service calls and ending the request at the API with an exception.

Exception:

System.ServiceModel.CommunicationException: An error occurred while sending the request. ---> System.Net.Http.HttpRequestException: An error occurred while sending the request. ---> System.Net.Http.WinHttpException: Not enough storage is available to complete this operation at System.Net.Http.WinHttpHandler.ThrowOnInvalidHandle(SafeWinHttpHandle handle) at System.Net.Http.WinHttpHandler.EnsureSessionHandleExists(WinHttpRequestState state) at System.Net.Http.WinHttpHandler.d__105.MoveNext()

Could someone help me to resolve this issue?

Hi Nilantha,

Maybe you could explain more about "During the test is used http requests (not https) to the Web API and then https from Web API to SAP". So this is not straight http request.

In another word, please describe step by step of request, and at what stage, does siteminder agent come in picture?

Is protected service a java servlet service or soap, or something else?

Is it GET/POST call, or some other calls were made by API?

If you could provide some concrete examples of the entire flow, that will be more helpful to understand what the true requirement is.

Thank you.

Hongxu Liu
CA SSO Support