SSO not Working Between Apps Despite CookieProvider

book

Article ID: 144904

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction

Customer has one app protected by forms auth and another via x509 auth.  If we first authenticate by accessing the application protected by forms, we're unexpectedly challenged for authentication by the application protected with x509.  We don't see any errors indicating why the first session is not being honored.  The expectation is users can access the x509 app without being challenged if they've already visited the app protected with forms auth.

Cause

The two applications were in different cookie domains and the cookie provider configuration was invalid.

Environment

Release : All

Component : SITEMINDER POLICY SERVER

Resolution

The designated cookie provider had a cookie provider specified, and this is an invalid configuration. Agents which act as a cookie provider should have no CookieProvider specified.