API Gateway does not provide reason code for “password will expire”

book

Article ID: 192020

calendar_today

Updated On:

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

Using the assertion "Authenticate Against CA Single Sign-On" does not provide ATTR_USERMSG attribute for "password will expire", smauthreason=18, in API Gateway (9.4 CR03).

 

ATTR_STATUS_MESSAGE is empty.

SESS_DEF_REASON is empty.


We use Siteminder 12.8 SP03.


Environment

Release : 9.4

Component : API GTW ENTERPRISE MANAGER

Resolution

How to identify user whose password is expiring soon - the responses was available just not clear on how to get it

Provides the PWS URL to handle the use case
Set context variable as followed
${siteminder.smcontext.attributes.ATTR_ONACCEPTREDIRECT}

Provides the reason code attribute 18 for the use case
Set context variable as followed
${siteminder.smcontext.sessdef.reason}
ALSO

User story: was created to cover the additional info needed (# of days password will expire)
US672256