Layer7 API Management

Expand all | Collapse all

Cookie based authentication against CA SSO

  • 1.  Cookie based authentication against CA SSO

    Posted 03-09-2020 09:52 AM
    Hey there!

    am trying to authenticate against CA SSO using a cookie. Please help me with the right format.



  • 2.  RE: Cookie based authentication against CA SSO

    Posted 03-10-2020 01:15 PM

    If the user has an SMSESSION you just need to specify "Use SSO Token from Context Variable" and provide  it in the authenticate.

    If the cookie isn't present, trap it (at least one must be true structure) and redirect for authentication or collect credentials.

    The most basic structure for our setup is along these lines  - this doesn't trap all conditions just a simple example. If user has no session then it redirects to log in form; that log in form will harvest credentials, set the smsession and redirect back to the target. You'd want to adjust it to meet your environment and trap all the conditions you want (e.g., check protected fails versus no cookie or if no cookie do X but if authenticate fails do Y).