Layer 7 Access Management

Tech Tip : CA Single Sign-On : Post Preservation going into loop when going to the Cookie Provider

  • 1.  Tech Tip : CA Single Sign-On : Post Preservation going into loop when going to the Cookie Provider

    Posted 01-02-2017 05:40 AM

    Issue :

     

    - Running Web Agent, the POST redirect to the Cookie Provider
      never ends and the post preservation page is kept in the
      browser. I'm running 2 Virtual Hosts in Apache, and the Web
      Agent protects both Virtual Hosts.

     

      Because there's only 1 Web Agent, I have configured only 1
      ACO for which I set no value for the CookieDomain. I've defined
      also the CookieProvider to the url of the second Virtual Host.
     
      So why is the browser stalling on the post preservation page ?

     

    Environment :

     

      - Web Agent 12.52SP1;
      - Policy Server 12.52SP1;

     

    Cause :

     

    The Cookie Provider should have a CookieDomain defined and also, the Web Agent
    acting as a Cookie Provider shouldn't have the CookieProvider ACO parameter defined.

     

    Resolution :

     

      The solution would be to separate in 2 Web Server instances, running 2
      separate Web Agent instances and configuration.

     

      If the Cookie Provider Domain and the Web Agent domain are the same, then you
      don't need a Cookie Provider.

     

    KB : TEC1580684