SAML attribute is missing from SAML response.

book

Article ID: 221334

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Federation (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

We have migrated SAML server from old to new. Now we are facing issue related to partnership federation. SAML attributes are missing from SAML response. As per clients request we have updated only plugin parameter url and api key for that partnership after that it was not working. Before that it was working fine.

Cause

Customer is using AGP (Assertion Generator Plugin = custom code developed by customer).  The AGP's log showed that the user attribute values were retrieved successfully, but not sent to the policy server to be included in the assertion.

Environment

Release : 12.8.03

Component : SITEMINDER SECURE PROXY SERVER

Resolution

Customer will need to debug their custom AGP code to assure it sends the needed user attributes to the policy server.