search cancel

Can the C/Java Single Sign On agent SDK only authenticate a user, and not authorize them?

book

Article ID: 113402

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction



Can the C/Java Single Sign On agent SDK only authenticate a user, and not authorize them?

Environment

Release:
Component: SMAPC

Resolution

The SDK is flexible, and has separate calls for determining if a resource is protected, if a user is authenticated, and then if a user is authorized for the resource per the Single Sign On policy configuration. So it is possible in both languages to only do an authentication and skip authorization.