search cancel

IWA authentication chaining fails with smauthreason 56

book

Article ID: 188774

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) SITEMINDER

Issue/Introduction

i am trying to do IWA authenitcation chainging with SPS doing the windows authentication , this works fine in chrome  but on IE , i am getting an error with smauthreason=56 ,

i have never seen that particular smauthreason , could you please let me know under what scenario this occurs and how do we troubleshoot it . 


Cause

Customer had set "keepalive no", in the Apache configuration (HTTPD.CONF). This caused the issue in their environment. Yes is the Out of the Box configuration and needed for IWA Authentication with firewalls / loadbalancer / F5 or Similar devices.

https://httpd.apache.org/docs/2.4/mod/core.html#keepalive

Environment

Release : 12.8x releases. 

Component : SITEMINDER - Access Gateway

Resolution

Customer had set "keepalive no", in the Apache configuration (HTTPD.CONF). This caused the issue in their environment. Yes is the Out of the Box configuration and needed for IWA Authentication with firewalls / loadbalancer / F5 or Similar devices.

https://httpd.apache.org/docs/2.4/mod/core.html#keepalive