User prompted by IM login page after a successful SSO authentication

book

Article ID: 209254

calendar_today

Updated On:

Products

CA Identity Manager

Issue/Introduction

We have installed and integrated CA IDM 14.3 on Websphere with Siteminder 12.8 based on the CA documentation.

However when we are trying to SSO, while the user credentials are accepted by siteminder login page, we are then being prompted by Identity Manager default login page.
when we enter the same user ID again in Identity Manager login page, we are logged in.

Cause

web.xml cached version still has FrameworkAuthFilter as enabled

Environment

Identity Manager 14.x
Application server: Websphere
IM and SM / SSO are integrated.

Resolution

The change must be made in the web.xml under this location: 

\IBM\WebSphere\AppServer\profiles\AppSrv01\config\cells\<cell_name>\applications\iam_im.ear\deployments\iam_im\user_console.war\WEB-INF 

Update the cached web.xml with the required settings for FrameworkAuthFilter to be set to false as per https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/identity-manager/14-3/configuring/ca-single-sign-on-integration/integrate-ca-single-sign-on-with-ca-identity-manager/disable-the-native-ca-identity-manager-framework-authentication-filter.html

Restart IM application after the change.