AJAX used by Wordpress admin UI blocked by SSO Web Agent

book

Article ID: 38644

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Issue/Problem/Symptoms: 

After a Wordpress admin has authenticated via SSO Agent, and is using Wordpress, the AJAX called are intercepted by the agent. 

Environment:  

Backend Application: Wordpress 

SSO/Siteminder Agent: R12.Sp3 Cr12 and newer

Apache Reverse Proxy: 2.2

Resolution/Workaround:

1. Configure the ACO setting OverlookSessionForUrls = /wp-admin/admin-ajax.php

Additional Information:

 

For further information regarding this configuration and related agent configuration objects please review the documentation linked below. 
https://docops.ca.com/ca-single-sign-on/12-52-sp2/en/configuring/web-agent-configuration/session-protection/session-cookie-management

Environment

Release:
Component: SMAPC