Can any one help me in steps about a user has getting provisioned when try to login in to an application using Social Sign-on with Facebook. On SiteMinder Partnership Federation, I have configured the Local & Remote Entities but when it comes to Partnership we need to choose Remote Provisioning Server with either Open-format Cookie, Open-format Cookie Post or HTTP Headers that will be used by Identity Manager (CA Identity Management) for provisioning that user. So need information how it has to be implemented from Identity Management side in order to accept what ever it is whether Cookie, HTTP Header or Token and the user should get provisioned, then hand over the control back to SiteMinder. Then Siteminder check the user information in Directory and then allows access to application.
You probably will get better answers if you posted this to the SiteMinder community page or even opened a Support Case with SiteMinder. This is a SiteMinder question relating to Federation, not really relating to Identity Manager.
Just making sure you are aware.
Thank you very much for your valuable suggestion.
Already opened a Support Case on the same and waiting for the reply. So mean while I have posted here hoping for more inputs that may help us in a better way.
Can you please suggest any active SiteMinder community pages.
This is the SiteMinder community page you are looking for: CA Security It's under the new title "CA Single Sign-On"
Users authenticating via Social Sign-On for the first time are new or unknown to SiteMinder and are not included in the SiteMinder user store. SiteMinder can handle this situation in two ways:
1. Initiate a dynamic user provisioning flow to handle self-registration.
2. Reject such requests as “unknown” users.
Dynamic user provisioning is implemented by redirecting users to an external provisioning URL where an external provisioning system handles the self-registration flow.
Considerations are required to enable the external provisioning system to gracefully handle the entire flow, including retrieval of user attributes gathered from the Social provider and handling a redirect back from the provisioning system back to SiteMinder once the self-registration flow is completed.
Please refer below links for more details.
SAP Portal Services
User Provisioning at the Relying Party
Check if following documentation helps.
CA SiteMinder® Integrated Documents 12.52 SP1