Users are able to access the Siteminder protected BWise application as expected. This application is also available via another host and is not Siteminder protected. If users access the non-SSO BWise application in a second tab of the browser while still having a tab open for the SM protected version, when the user clicks an additional link in the Siteminder protected application the user appears to get logged out of the Siteminder protected application and receives an error message regarding their session validity.
Siteminder was authenticating and authorizing each request as expected, along with setting all expected headers. This is an application issue.
Release : ALL
Component : SITEMINDER -WEB AGENT FOR APACHE
Since Siteminder is authenticating/authorizing as expected, including setting authorization headers, work with BWise application vendor to troubleshoot.