ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

SOI-CAC Component Does Not Pull Full Username From EDIPI field in Certificate During Authentication


Article ID: 103867


Updated On:


CA Service Operations Insight (SOI)


During testing of SOI's CAC/PIV using CRLs, SOI does not pull the entire username to pass over to EEM for authentication. It leaves out the first letter of the username on the CAC/PIV certificate. It should pull "[email protected]" but currently it only pulls "[email protected]" The soiui-debug.log logs the detail of the message with username having problem.


Component: SOIMGR


- The problem got resolved after changing the regex to .*=.*=(.*.* in SamUI\webapps\sam\WEB-INF\cac\config\cac-system-config.xml and now the user name (showing up as email address) showing up without getting truncated.
Note: You'll have to recycle the CA SOI User Interface service after making the change.