Hi to all,
I've a working installation of CA PAM integrated with SSO (siteminder 12.7, access gateway based on windows) with IWA authentication. CA PAM is configured as RP (Config >> Xsuite SAML RP Configuration) and CA SSO as IdP.
Now I setup a new system siteminder 12.8-sp2 with Linux access gateway. I setup also a working kerberos authentication. The auth. method is Kerberos with fallback to Form Authentication. I change RP config to use new IDP.
If access PAM by Internet Explorer (or Firefox) form a domain PC it work: when I click on "Single Sign-On" I get authenticated.
But if I use standlone client no! I get redirected on Form Authentication.
Client appeears to support only IWA but not Kerberos!
What do you think ?