[Rechallenge as SecurityContext feature is enabled but session information is not available.]
search cancel

[Rechallenge as SecurityContext feature is enabled but session information is not available.]

book

Article ID: 431268

calendar_today

Updated On:

Products

SITEMINDER

Issue/Introduction

When Basic Authentication was used the user was able to login but once changing to HTML form authentication the user is getting rechallenged repeatedly.

AgentTrace log has the following message:

[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmLowLevelAgent.cpp:4782][GetSessionInfo][Unable to get credentials.]
[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmAuthenticationManager.cpp:339][CSmAuthenticationManager::AuthenticateUser][LowLevelAgent was unable to get session information.]
[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmAuthenticationManager.cpp:345][CSmAuthenticationManager::AuthenticateUser][Rechallenge as SecurityContext feature is enabled but session information is not available.]
[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmHighLevelAgent.cpp:665][ProcessRequest][AuthenticationManager returned SmNo or SmNoAction, calling ChallengeManager.]
[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmChallengeManager.cpp:105][CSmChallengeManager::DoChallenge][Calling SM_WAF_HTTP_PLUGIN->ProcessChallenge.]
[02/24/2026][00:12:07.109][7863][140291008886336][2084d064-851e22a2-700828df-989da869-2802dec6-23][CSmHttpCredCore.cpp:2060][CSmHttpCredCore::DoFormsChallenge][Executing forms challenge.]

Environment

All SiteMinder versions

Cause

User directory had "Use authenticated user's security context" checkbox ticked causing the Policy Server to look for the stored credentials in the session store and fail.

Resolution

Clear the checkbox for "Use authenticated user's security context" if it is not required.

Otherwise, review the requirements for the user security context option.

Powered by Wolken Software