Unable to retrieve claims values of Userinfo endpoint response when customizing SQL Query Scheme

Article Id: 142228

Status: Published

Updated On: 24-12-2019 09:13

Products:

CA Single Sign On Secure Proxy Server (SiteMinder) , CA Single Sign On Agents (SiteMinder) , CA Single Sign On Federation (SiteMinder) , SITEMINDER

Issue/Introduction:

With using CA Access Gateway’s OpenID Connect, customer will deploy their authentication system as OpenID Connect Provider.

In addition to the configuration, Password Policy is used for the ODBC User Directory.

In this case, if enabling the Password Policy and User attributes mapping in the User directory, access to UserInfo endpoint resulted in no claims generated.

On the other hand, if disabling them, it worked as expected.

Environment:

Release : 12.8.03

Component : CA Access Gateway

Resolution:

Customer resolved the problem by themselves. Possibly, this was due to the size limit of HTTP request data by Web Server (outside out SiteMinder function).

Additional Information:

When customizing SQL Query Scheme, ensure it is valid. If any problem is observed, use the SmSampleUsers schema (e.g., "smsampleusers_sqlserver.sql" under <siteminder_dir>/db/SQL) and the default SQL Query Scheme to clarify whether your scenario works as expected for comparison.