What the max length of user's password which is possible to post?
search cancel

What the max length of user's password which is possible to post?

book

Article ID: 22059

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Question :

What is the max length of user's password which is possible to post? If I try to post a password with more than 6000 chars, the password is not forwarded to the Policy Server. If I try to post a password with less than 4500 chars, the password correctly is forwarded to the Policy Server.

Answer :

  1. There is a limitation when using FFCompatMode = yes as SiteMinder use a FROMCRED cookie that may interfer with the password length.
  2. There is a limitation in the SmAgentAPI.h on which the Webagent is build in and we can see that there is a restriction on the password length of 4096 chars.

Environment

Release:
Component: SMPLC
Powered by Wolken Software