Hello Akshat,
Are you trying to configure SSO to get the Authorization Code Or Access Token ?
I think, if you already have the SMSESSION in the request, you can extract it and put it in a context variable, and use it in the below assertion (from the link Barry has given). i.e.,
Atleast One
- All
- Compare smsession.variable is not empty
- Use the "Authenticate Against CA SSO" assertion with "Use SSO Token from context variable"
- All
- Compare smsession.variable is empty
- Get the username and password
- Use the "Authenticate Against CA SSO" assertion with "Username / password" option
Original Message:
Sent: 09-21-2020 10:39 AM
From: Akshat Aranya
Subject: OTK integeration with Siteminder
Hi Stern,
Thanks for your reply
I have tried this configuration, but I am still not able to understand how the authorization workflow will happen how can we generate the authorization code using SMSESSION, also how can i configure this for multiple applications ie use this configuration for different user directories and protected resource, document seems to be very tightly coupled with one application
Please share some thoughts
Regards
Akshat
Original Message:
Sent: 09-21-2020 09:30 AM
From: BARRY STERN
Subject: OTK integeration with Siteminder
Hello,
Documentation for configuring OTK for authentication with Siteminder is found here:
https://techdocs.broadcom.com/us/en/ca-enterprise-software/layer7-api-management/api-management-oauth-toolkit/4-4/installation-workflow/configure-authentication/support-optional-authentication-mechanisms.html
Original Message:
Sent: 09-18-2020 01:44 PM
From: Akshat Aranya
Subject: OTK integeration with Siteminder
We are looking for any documentation available to integrate OTK with siteminder and use SMSESSION to generate token
We will also like to understand how can we integrate OTK with different apps in the same siteminder