search cancel

Making a local user not to login in Federation environment


Article ID: 16792


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On


An environment is a Federation setup of SiteMinder SP and Third-party IDP. A Configuration is seamless between SiteMinder SP and Third-party IDP. 

SiteMinder acquires mapping information (NameID attribute) from Third-party IDP, and maps it to the user directory of SiteMinder.



How to setup to implement following requirement?

Although a user accessing from the Third-party IDP can log in, a local user cannot login to a resource protected by SiteMinder.



Release: ETRSWK99000-12.7-SiteMinder-Web Access Manager-SmWalker


If it is made to log in only at the time of the Federation use from Third-party IDP and you do not want a local user to log in, a method of setting up a password which cannot be entered by keyboard can be considered for a user.