Password Self Service does not work when SiteMinder is integrated with CA Advanced Auth
search cancel

Password Self Service does not work when SiteMinder is integrated with CA Advanced Auth

book

Article ID: 268084

calendar_today

Updated On:

Products

SITEMINDER CA Advanced Authentication CA Advanced Authentication - Risk Authentication (RiskMinder / RiskFort) CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort)

Issue/Introduction

Use case:

User password expired and tries to logon to MFA protected realm.

User gets prompted for username/password and OTP.

Then user is redirected for Password Changed but the password change does not succeed and goes into loop of changing password page.

 

Environment

Release : 12.8.06

Cause

adaptershim.ini file had the optional configuration to load other authentication scheme.

AuthSchemeLib=smauthhtml
AuthSchemeParam=https://www.<host name>.<Your domain>/siteminderagent/forms/login.fcc?;ACS=0;REL=1

This overrides the default /arcotlogin/shim.fcc and able to login the user but breaks the password change.

 

Resolution

The configuration worked fine once the 2 optional configuration was commented out and when using the default /arcotlogin/shim.fcc