API Gateway does not provide reason code for “password will expire”

search cancel

API Gateway does not provide reason code for “password will expire”

book

Article ID: 192020

calendar_today

Updated On: 10-31-2023

Products

CA API Gateway API SECURITY CA API Gateway Precision API Monitoring Module for API Gateway (Layer 7) CA API Gateway Enterprise Service Manager (Layer 7) STARTER PACK-7 CA Microgateway

Issue/Introduction

Using the assertion "Authenticate Against CA Single Sign-On" does not provide ATTR_USERMSG attribute for "password will expire", smauthreason=18, in API Gateway (9.4 CR03).

ATTR_STATUS_MESSAGE is empty.

SESS_DEF_REASON is empty.

We use Siteminder 12.8 SP03.

Environment

Release : 9.4

Component : API GTW ENTERPRISE MANAGER

Resolution

How to identify user whose password is expiring soon - the responses was available just not clear on how to get it

Provides the PWS URL to handle the use case
Set context variable as followed
${siteminder.smcontext.attributes.ATTR_ONACCEPTREDIRECT}

Provides the reason code attribute 18 for the use case
Set context variable as followed
${siteminder.smcontext.sessdef.reason}

Feedback

thumb_up Yes

thumb_down No