extremely large HTTP header responses

book

Article ID: 126380

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction



An application protected by Single Sign On is looking to have HTTP header responses retrieved from LDAP which can be up to 200k in size.  Is the policy server / web agent capable of this?

Environment

12.52 SP1

Resolution

We have tested with Apache 2.4 on RedHat 7, and a 12.52 SP1 policy server.  We are able to successfully set HTTP header responses of 200k in size, and confirm it can be picked up in its entirety by code within the web server (such as PHP.)  This may vary based on web server type, and version.  Also testing would need to occur to make sure under load, the web agent cache is utilized effectively - given the increase in size of data cached per user.  This would vary application to application and would be load testing customers should undergo as part of going live with any configuration such as this.