Symantec Access Management

Expand all | Collapse all

Advanced Password Services not working

Jump to Best Answer
  • 1.  Advanced Password Services not working

    Posted 05-25-2016 08:48 AM

    I enabled APS , added smaps attributes to CA directory but unable to get the values for the attributes at directory level. Hence I am unable to get the values passed as headers on the jsp redirected page.

    Can anyone help me out , to have User's last login Time and IP address on the redirected next home page.

    Please give the complete workflow of the process.

    -Ketan Batra



  • 2.  Re: Advanced Password Services not working

    Posted 05-25-2016 03:43 PM

    Also please clarify how are you trying to retrieve the APS attributes? 



  • 3.  Re: Advanced Password Services not working

    Posted 05-25-2016 03:41 PM

    Have you checked the directory? Are the smapsXXX properties are being updated properly?


    Is there any error related to APS during user login ?



  • 4.  Re: Advanced Password Services not working
    Best Answer

    Broadcom Employee
    Posted 05-26-2016 08:04 AM

    Hi Ketan,

     

    Please check out the following tech notes:

     

    http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec1919596.aspx

     

    How to configure event handling for SiteMinder Advanced Password Services.

     

    Let us know if these tech notes help you resolve the issue you are facing.



  • 5.  Re: Advanced Password Services not working

    Posted 05-26-2016 03:40 AM

    I just enabled CA advanced password services at policy server from the .dll installed during siteminder installation.

    Then added smapsXXX attributes at ca directory schema.

    Some of the attributes(not all) started fetching values when user logged in.

    Now want that these attributes must be redirected "as response headers" as I defined in the policy to the jsp home page.

     

     

    May be I am missing some steps.

    Please do share the complete workflow process i.e how to get the smaps attributes as headers from directory to the home page as will be defined in the response of the defined policy.

     

    Thank you.,



  • 6.  Re: Advanced Password Services not working

    Posted 05-26-2016 08:43 PM

    Step 1 : Verify if the smaps attribute that you are interested has a value in the user directory.

     

    Step 2 : Configure response of type : Web Agent

                  Response Attribute Type : WebAgent–HTTP–Header–Variable.

                  Attribute Kind :  User Attribute

     

     

     

     

    Step 3 : Tie the above response to "OnAccessAccept" rule :

     

    Step 4 : Login with valid user credential and verify the headers on the application side :