Virtual Appliance integrated with SiteMinder - users have no tasks available
search cancel

Virtual Appliance integrated with SiteMinder - users have no tasks available

book

Article ID: 144983

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite SITEMINDER CA Single Sign On Agents (SiteMinder)

Issue/Introduction

 

A new vApp infrastructure was deployed and has been integrated with SiteMinder.

The steps in the following link were used to set up the environment, but this one does not work (1).

After authenticating to access the user console, the user is presented with just the header bar of the IM User Console. The rest of the page is blank white space - no attempt to even trying to start to draw the available tasks.

 

Environment

 

Release : 14.3

Component : IdentityMinder(Identity Manager)

 

Cause

 

In reviewing the Web Agent traces, the following messages can be seen.


 
  [01/30/2020][09:15:42][24760][140681806825216][1f57bc35-c7a7d6de-8813b22b-977f1d41-2b8b72e0-e93]
  [AuthenticateUser][Validating session 'NtOGp387AJyuJ/EE9vPO6XnEDjE=' for user 'uid=imadmin,ou=people,ou=im,ou=ca,o=com' in zone 'SM'.]

  [01/30/2020][09:15:42][24760][140681806825216][1f57bc35-c7a7d6de-8813b22b-977f1d41-2b8b72e0-e93]
  [AuthenticateUser][User 'uid=imadmin,ou=people,ou=im,ou=ca,o=com' is authenticated from cache.]

  [01/30/2020][09:15:42][24760][140681806825216][1f57bc35-c7a7d6de-8813b22b-977f1d41-2b8b72e0-e93]
  [AuthorizeUser][User 'uid=imadmin,ou=people,ou=im,ou=ca,o=com' is not authorized by Policy Server.]

 

Resolution

 

After reviewing the Siteminder configuration, there was a bad Siteminder Rule identified for /iam. Removing this invalid Rule for /iam solves the issue.

 

Additional Information

 

(1)

    Integrating CA Identity Manager with CA Single Sign-On using Virtual Appliance
   

 

Powered by Wolken Software