Users Logged out of Application After Accessing non-SSO Instance of Application

book

Article ID: 192251

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) SITEMINDER

Issue/Introduction

Users are able to access the Siteminder protected BWise application as expected.  This application is also available via another host and is not Siteminder protected.  If users access the non-SSO BWise application in a second tab of the browser while still having a tab open for the SM protected version, when the user clicks an additional link in the Siteminder protected application the user appears to get logged out of the Siteminder protected application and receives an error message regarding their session validity.

Cause

Siteminder was authenticating and authorizing each request as expected, along with setting all expected headers.  This is an application issue.

Environment

Release : ALL

Component : SITEMINDER -WEB AGENT FOR APACHE

Resolution

Since Siteminder is authenticating/authorizing as expected, including setting authorization headers, work with BWise application vendor to troubleshoot.