search cancel

How to transform the value of an octet attribute from Active Directory ?


Article ID: 16907


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On


We're sending a User Attribute in a Response. The Attribute we use is objectGUID from Active Directory. The problem is that the browser recieves the Attribute value as an octet. This is because the Active Directory stores it as an octet.


Then, the response the browser receives from SSO in httpheader is


How can we make this value a String ?



Component: SMPLC


You have to convert the value at the Policy Server level first. We do not provide an out of the box functionality to transform an Attribute value from Octet to String. However, you can use an Active Expression as Response and put Java code that will do it for you.


Find a sample below, there are many others over the Internet:


On the Policy Server side, you have to run your own code to make the transformation and send the value as a string to the browser.