When setting up the necessary configuration for the integration between SiteMinder and VIP SaaS, system admin
has got outbound firewall rules opened,
has configured an app and the required OIDC configuration within VIP SaaS,
has created a "VIP Authentication Hub provider" in SiteMinder admin ui.
After above steps, when trying to create an auth scheme in SiteMinder based on VIP Hub Authentication template, it does not display any value in the drop down of “Application”.
Release : 12.8.07 SiteMinder and VIP SaaS Integration.
When looking at "VIP Authentication Hub provider" property on SiteMinder side, its "authentication policy management" within VIP auth hub provider object is empty, that is consistent with auth scheme not showing application name. If this is working, the app name and policy ID should be populated.
Essentially the admin ui indicates there is a communication problem to obtain the application information from VIP Saas service.
In order to see the application on SiteMinder UI, token exchange must happen first. That's where the failure is.
There is misconfiguration in VIP.
Login VIP Saas management UI, Under VIP policy Configuration, OIDC tab:
Verify "Redirect url" should be: https://accessgateway.example.com/affwebservices/public/bctokencontroller, not /oauthtokenconsumer