If the VIP Enterprise Gateway on RHEL is upgraded from a previous version prior to configuring the SSP IDP settings, the Enterprise Gateway console may not allow enabling the MY VIP option (Enterprise Gateway > EG > Console > Identity Providers > SSP Idp > Enable SSP > Enable My VIP). Saving changes results in the message There is no change to update.
Enabling the My VIP IDP portal requires the following attributes to be written to VIP Self-Service Portal configuration file:
samlidp.enhancedSSP.enabled = Yes
samlidp.myvip.post.url = https://login.vip.symantec.com/viplogin/saml2/post/idp2fa
samlidp.myvip.relay.url = https://my.vip.symantec.com/api/authenticate-saml
samlidp.myvip.loa.url = https://login.vip.symantec.com
This condition occurs when the pointer to the configuration files aren't updated properly, and these new attributes cannot be written, and MY VIP cannot be enabled.
# End VIPEGSSP section
samlidp.enhancedSSP.enabled = Yes
samlidp.myvip.post.url = https://login.vip.symantec.com/viplogin/saml2/post/idp2fa
samlidp.myvip.relay.url = https://my.vip.symantec.com/api/authenticate-saml
samlidp.myvip.loa.url = https://login.vip.symantec.com