When IDTH is submitted with AMR which gives AuthLevel 50 but when going through ChainAuth requiring AuthLevel 100(PWD:5, VIPAH:100) with the SMSESSION generated previously then the browser redirects for PWD authentication scheme.

R12.9

The standard SiteMinder process first checks the authentication level.

If the level is insufficient, it redirects to the defined authentication scheme.

If a Chain Authentication scheme is used, it checks if the existing AMR suffices.

If the required AMR is absent, it prompts for authentication accordingly.