search cancel

Request Failed Missing sm-header value, when changing user password in CA Identity Portal

book

Article ID: 203473

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite

Issue/Introduction

 

When using CA Identity Portal to change a password on a user Identity at

idm.dev.123.com/sigma/app   (Identity Portal)

we are getting this error when submitting the password change: 

 

Request Failed

Missing sm-header    value sm-realm

Resolution

Disable the SM Header validation in the Identity Manager application server(s).

In the Identity Manager .ear file there is a setting for disabling the SM header checking.  On the IM server edit the ValidateSMHeadersWithPS property value to false in this web.xml.

On non-vAPP in the deployment location:

../iam_im.ear/policyserver.rar/META-INF/web.xml

On vAPP the path is here, as documented (https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-suite/14-3/virtual-appliance/administering-virtual-appliance.html):

CA SSO customizations
/opt/CA/VirtualAppliance/custom/IdentityManager/custom
/opt/CA/VirtualAppliance/custom/IdentityManager/SiteMinder_config/ra.xml.

       

<config-property>
            <config-property-name>ValidateSMHeadersWithPS</config-property-name>
            <config-property-type>java.lang.String</config-property-type>
            <config-property-value>false</config-property-value>
        </config-property>

 

A restart of IM and IP will be required for the change to take effect.