IWA authentication chaining fails with smauthreason 56
Article ID: 188774
Updated On:
Products
CA Single Sign On Secure Proxy Server (SiteMinder)
SITEMINDER
Issue/Introduction
i am trying to do IWA authenitcation chainging with SPS doing the windows authentication , this works fine in chrome but on IE , i am getting an error with smauthreason=56 ,
i have never seen that particular smauthreason , could you please let me know under what scenario this occurs and how do we troubleshoot it .
Environment
Release : 12.8x releases.
Component : SITEMINDER - Access Gateway
Cause
Customer had set "keepalive no", in the Apache configuration (HTTPD.CONF). This caused the issue in their environment. Yes is the Out of the Box configuration and needed for IWA Authentication with firewalls / loadbalancer / F5 or Similar devices.
https://httpd.apache.org/docs/2.4/mod/core.html#keepalive
https://httpd.apache.org/docs/2.4/mod/core.html#keepalive
Resolution
Customer had set "keepalive no", in the Apache configuration (HTTPD.CONF). This caused the issue in their environment. Yes is the Out of the Box configuration and needed for IWA Authentication with firewalls / loadbalancer / F5 or Similar devices.
https://httpd.apache.org/docs/2.4/mod/core.html#keepalive
https://httpd.apache.org/docs/2.4/mod/core.html#keepalive
Feedback
Yes
No
Powered by
