Users have a password automatically put into a Custom Page more than once

Article Id: 109981

Status: Published

Updated On: 25-09-2018 15:18

Products:

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On CA Single Sign-On

Issue/Introduction:

Users have a password automatically put into a Custom Page more than once without the user typing it.

Environment:

Release:
Component: SMPLC

Resolution:

1st step
-Need to have the developer of the custom login page reproduce the issue of the custom page that is putting the password in again automatically without the user trying to type the password.
Need a fiddler trace is running
You have to set DecryptHTTPS in fiddler .

2nd Step
-Then you also have to have developer of the custom login page try to reproduce the same above issue with the ca sso out of the box (ootb) page (login.fcc) while a fiddler trace is running with DecryptHTTPS set.
..
Note - In all previous cases, the developer of the custom login page had to rewrite the custom login page to prevent the above from happening.
In this case, as in most cases, the ca sso out of the box (ootb) login page (login.fcc) worked fine.