With using CA Access Gateway’s OpenID Connect, customer will deploy their authentication system as OpenID Connect Provider.

In addition to the configuration, Password Policy is used for the ODBC User Directory.

In this case, if enabling the Password Policy and User attributes mapping in the User directory, access to UserInfo endpoint resulted in no claims generated.

On the other hand, if disabling them, it worked as expected.

Release : 12.8.03

Component : CA Access Gateway

Customer resolved the problem by themselves. Possibly, this was due to the size limit of HTTP request data by Web Server (outside out SiteMinder function).

When customizing SQL Query Scheme, ensure it is valid. If any problem is observed, use the SmSampleUsers schema (e.g., "smsampleusers_sqlserver.sql" under <siteminder_dir>/db/SQL) and the default SQL Query Scheme to clarify whether your scenario works as expected for comparison.