Unable to retrieve claims values of Userinfo endpoint response when customizing SQL Query Scheme

book

Article ID: 142228

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction

With using CA Access Gateway’s OpenID Connect, customer will deploy their authentication system as OpenID Connect Provider.

In addition to the configuration, Password Policy is used for the ODBC User Directory.

In this case, if enabling the Password Policy and User attributes mapping in the User directory, access to UserInfo endpoint resulted in no claims generated.

On the other hand, if disabling them, it worked as expected.

Environment

Release : 12.8.03

Component : CA Access Gateway

Resolution

Customer resolved the problem by themselves. Possibly, this was due to the size limit of HTTP request data by Web Server (outside out SiteMinder function).

Additional Information

When customizing SQL Query Scheme, ensure it is valid. If any problem is observed, use the SmSampleUsers schema (e.g., "smsampleusers_sqlserver.sql" under <siteminder_dir>/db/SQL) and the default SQL Query Scheme to clarify whether your scenario works as expected for comparison.