search cancel

Global response not triggering for Application with multiple components

book

Article ID: 42451

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Question: 

Why is our configured Siteminder global response not triggering for an Application with multiple components?

We have a global response sent when the user is not authorized, which is a redirection to deny.fcc.

Environment:  

Policy server version - 12.05.0004.913

Answer: 

You can configure both global policies and domain-specific policies that affect the sane resources. For example, you can configure domain-specific policies for access control, and global policies that provide a standard set of responses.

However, in order for global policies to function, the components(realms) included in the domain-specific policies must be configured to allow event processing.

Please do the following:

=> Modify the first component, and click on the Advanced Settings - check the boxes for Process Authentication and Process Authorization events - click OK - Submit to save changes to the Application 2. Perform the same for the other components(realms)

 

 

Environment

Release:
Component: SMPLC