Group Authorization not working with SharePoint

book

Article ID: 7945

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

SharePoint is not authorizing Siteminder users via group.  If the same users are explicitly given access to the SharePoint application, they are allowed access.

Cause

SharePoint is not receiving the list of groups via the expected attribute name: smusergroups

Environment

All supported releases of SharePoint Agent

Resolution

In this case, although the attribute mapping had the correct name in the user store properties, a different name was given to the assertion attribute within the Legacy Federation properties.  Renaming the assertion attribute to the expected 'smusergroups' allowed users to access the SharePoint application via group.