Siteminder: ASA Agent R12.8 fails to validate the SMSESSION cookie on Websphere Application Server

search cancel

Siteminder: ASA Agent R12.8 fails to validate the SMSESSION cookie on Websphere Application Server

book

Article ID: 431595

calendar_today

Updated On:

Products

CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER

Issue/Introduction

SMSESSION cookie generated by the IHS WebAgent fails to validate at the proxy/ASA Agent.

Agent logs:

[ERROR] High Level Agent found an expired SMSESSION cookie.

Users get HTTP 403 from ASA and unable to view Documents in the application.

Environment

ASA Agent 12.8 on WebSphere 8.5.5.28 on RedHat 7

Cause

The following ACO parameters were enabled causing the session to timeout after two minutes.

Proxy = yes
Proxytimeout = 120

Resolution

Removing the below mention ACO parameters fixed the issue of SMESSION cookie getting expired in two minutes.

Proxy = no
#Proxytimeout = 120

Feedback

thumb_up Yes

thumb_down No