CA Single Sign On Secure Proxy Server (SiteMinder)CA Single Sign On Agents (SiteMinder)CA Single Sign On Federation (SiteMinder)CA Single Sign On SOA Security Manager (SiteMinder)SITEMINDER
Issue/Introduction
We would like to know how SiteMinder do:
Encryption of SSO cookies that are read by all agents in a SSO environment
Encryption of session tickets which contains user credentials
Environment
Release : 12.8.03
Component : SITEMINDER -WEB AGENT FOR APACHE
Resolution
Encryption of sso cookies will be done by agent keys.
webagent uses the keys sent by PS and the user credentials are not stored anywhere.