Symantec Access Management

  • Private Community
 View Only

  • 1.  Facebook Social Sign-on

    Posted May 24, 2016 08:52 AM

    Hi,

    Can any one help me in steps about a user has getting provisioned when try to login in to an application using Social Sign-on with Facebook. On SiteMinder Partnership Federation, I have configured the Local & Remote Entities but when it comes to Partnership we need to choose Remote Provisioning Server with either Open-format Cookie, Open-format Cookie Post or HTTP Headers that will be used by Identity Manager (CA Identity Management)  for provisioning that user. So need information how it has to be implemented from Identity Management side in order to accept what ever it is whether Cookie, HTTP Header or Token and the user should get provisioned, then hand over the control back to SiteMinder. Then Siteminder check the user information in Directory and then allows access to application.



  • 2.  Re: Facebook Social Sign-on

    Broadcom Employee
    Posted May 24, 2016 12:31 PM

    Hi Sharath,

     

    You probably will get better answers if you posted this to the SiteMinder community page or even opened a Support Case with SiteMinder. This is a SiteMinder question relating to Federation, not really relating to Identity Manager.

     

    Just making sure you are aware.

     

    Thanks,

    Sagi



  • 3.  Re: Facebook Social Sign-on

    Posted May 24, 2016 03:12 PM

    Hi Sagi,

     

    Thank you very much for your valuable suggestion.

    Already opened a Support Case on the same and waiting for the reply. So mean while I have posted here hoping for more inputs that may help us in a better way.

    Can you please suggest any active SiteMinder community pages.



  • 4.  Re: Facebook Social Sign-on

    Posted May 25, 2016 04:38 PM

    Hello Sharath,

     

    This is the SiteMinder community page you are looking for: CA Security It's under the new title "CA Single Sign-On"

     

    Thanks,

    Andrew Nguyen



  • 5.  Re: Facebook Social Sign-on
    Best Answer

    Posted May 27, 2016 07:42 AM

    Hi Sharath,

     

    Users authenticating via Social Sign-On for the first time are new or unknown to SiteMinder and are not included in the SiteMinder user store. SiteMinder can handle this situation in two ways:

    1. Initiate a dynamic user provisioning flow to handle self-registration.

    2. Reject such requests as “unknown” users.

     

    Dynamic user provisioning is implemented by redirecting users to an external provisioning URL where an external provisioning system handles the self-registration flow.

    Considerations are required to enable the external provisioning system to gracefully handle the entire flow, including retrieval of user attributes gathered from the Social provider and handling a redirect back from the provisioning system back to SiteMinder once the self-registration flow is completed.

    Please refer below links for more details.

    SAP Portal Services

    User Provisioning at the Relying Party

     

    Thanks,

    Sharan



  • 6.  Re: Facebook Social Sign-on

    Posted May 25, 2016 10:08 PM

    Hi Sharath,

     

    Check if following documentation helps.

     

    CA SiteMinder® Integrated Documents 12.52 SP1

     

    Regards,

    Kar Meng