FWStrace.log Showing Different Details for Partnerships with Same Configuration

book

Article ID: 193732

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Federation (SiteMinder) SITEMINDER

Issue/Introduction

The FWSTrace log has a different format of cookie when logging with the Partnership Federation.
When created the partnership with API, it's format is different and when created Partnership manually.

Could you please let me know why?

Log format for manual Partnership: 
[[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][authenticateUser][Passing response message through login call [CHECKPOINT = SSO_RESPONSEMESSAGEINLOGIN_REQ]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][authenticateUser][result code from AgentAPI login call: 1]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][authenticateUser][Login successful [CHECKPOINT = SSO_LOGINSUCEESS_RSP]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][SAML Assertion based user authentication succeeded.]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][session id is: IiFUhS1M1+0byKwdONOfrauzN2A=]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][Response Attributes:]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][   255:SAMLDataResponse=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]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][   218:[email protected],ou=Users,o=adp.com]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][   152:[email protected]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][   151:0e-9724dae1-dd5e-105c-a849-84af3d900000]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][SAMLData returned]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][
Original Data: SAMLDataResponse=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]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][
Trimmed Data: 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]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][processSuccessfulAuthentication][
SAMLData NameID: xxxxxxx128test]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][Validating input...]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][Creating the smsession cookie for SP domain [CHECKPOINT = SSO_SMSESSIONFORSPDOMAIN_REQ]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][Recived valid input. Attempting to create SESSION cookie.]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][session id is: IiFUhS1M1+0byKwdONOfrauzN2A=]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][About to create SESSION cookie.]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][FWSBase.java][createSessionCookie][Placing smsession in browser [CHECKPOINT = SSO_PLACESMSSESSIONTOBROWSER_REQ]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][AssertionConsumer.java][processSAMLResponse][authenticateUser succeded: 0]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][AssertionConsumer.java][processSAMLResponse][Redirecting user to target url [CHECKPOINT = SSOSAML2_REDIRECTUSERTARGETURL_REQ]]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][AssertionConsumer.java][handleUserRedirection][Enter: handleUserRedirection]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][AssertionConsumer.java][redirectUser][
redirectMode: 0]
[06/23/2020][18:22:01][12664][2710824704][760799a8-aebc7438-14b68037-f7cb86ec-f6cd49d2-a][AssertionConsumer.java][redirectUser][Redirecting the user to https://fedgateway-dit.nj.xxx.com/saml/fedlanding.html?REDBOX using '302 No Data' redirect mode.]

Log Format for Patnerhsip setup via API:

[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][authenticateUser][Passing response message through login call [CHECKPOINT = SSO_RESPONSEMESSAGEINLOGIN_REQ]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][authenticateUser][result code from AgentAPI login call: 1]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][authenticateUser][Login successful [CHECKPOINT = SSO_LOGINSUCEESS_RSP]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][SAML Assertion based user authentication succeeded.]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][session id is: cxsCS1GHN9ZWGWs+ovJGoOR4lLk=]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][Response Attributes:]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][   218:[email protected],ou=Users,o=WFN7DITSAN,ou=clients,o=xxx.com]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][   152:[email protected]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][processSuccessfulAuthentication][   151:0e-9724dae1-dd5e-105c-a849-84af3d900000]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][Validating input...]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][Creating the smsession cookie for SP domain [CHECKPOINT = SSO_SMSESSIONFORSPDOMAIN_REQ]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][Recived valid input. Attempting to create SESSION cookie.]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][session id is: cxsCS1GHN9ZWGWs+ovJGoOR4lLk=]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][About to create SESSION cookie.]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][FWSBase.java][createSessionCookie][Placing smsession in browser [CHECKPOINT = SSO_PLACESMSSESSIONTOBROWSER_REQ]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][processSAMLResponse][authenticateUser succeded: 0]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][processSAMLResponse][Redirecting user to target url [CHECKPOINT = SSOSAML2_REDIRECTUSERTARGETURL_REQ]]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][handleUserRedirection][Enter: handleUserRedirection]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][redirectUser][
redirectMode: 0]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][redirectUser][Redirecting the user to https://fedgateway-dit.nj.xxx.com/saml/fedlanding.html?REDBOX using '302 No Data' redirect mode.]
[06/23/2020][15:59:24][12664][2719246080][4d5e9a06-4980a416-86091963-8e04ded3-f2bca25f-b6][AssertionConsumer.java][doPost][
   processSAMLResponse TIME: 41ms]


Cause

The SAMLDataResponse cookie is used to hold assertion attributes for certain configurations, such as when converting the attributes to headers.  It looks like the API partnership is not leveraging any features that require this cookie and thus the difference in logging.

Environment

Release : 12.8

Component : SITEMINDER -WEB AGENT FOR APACHE

Resolution

SAMLDataResponse cookie is only used in some partnership configurations.