We have a user who has to clear his Chrome browser cache every day in order to be able to login to Rally. He logs in successfully and then gets logged out almost immediately and is brought to the "Choose a New Password" page. He clears his cache and then is able to SSO back in.
The user is also not able to login when tried to access direct SSO link : (https://login.broadcom.com/sso/saml2/0oa1h8kl499IWXCaa1d8?fromURI=/app/broadcomincexternal_rally_1/exk1gdbaindeR1Jrj1d8/sso/saml the error is 500 internal server error.
The issue happens to occur in SiteMinder IDP connections, due to a missing SP certificate in configuration.
Release : 2018
Component : API FOR AGILE CENTRAL
When any user tries to access Rally using the configured ACS URL the user should be logged into Rally directly, if users are receiving 500* error issues then the issue is with the IDP connection.
Please update the Rally OKTA Certificate provided during the connection build, it is available in the XML metadata file, extract the certificate and update them manually into your SiteMinder.
The issue will be fixed.
If the issue still persists, please log a case at the Broadcom support portal, a Rally engineer can help you with the SSO transition.