Symantec Access Management

  • Private Community
 View Only

  • 1.  How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Posted Mar 29, 2017 12:01 PM

    Is anyone using AWS Cognito with SiteMinder?



  • 2.  Re: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito
    Best Answer

    Posted Mar 29, 2017 08:38 PM

    Hi Chris,

    There is no AWS Cognito runbook available for Siteminder. Therefore, I doubt this is supported.

     

    http://www3.ca.com/us/lpg/partners/saas-security-partners.aspx

     

    You can check with SSO product manager mehhe02 if this is supported. If we are supported the integration, I expect a documentation (ie: runbook) detail how we can achieve.

     

    Regards,

    Kar Meng



  • 3.  Re: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Broadcom Employee
    Posted Mar 30, 2017 02:48 AM

    Hi Chris,

     

    For integration with SiteMinder, you better ask AWS directly. On their site, they mention possible
    integration with SiteMinder, but this is them to explain how it should be integrated as IdP.

     

    https://aws.amazon.com/blogs/apn/identity-federation-and-sso-for-saas-on-aws/

     

    Further reading :

    https://communities.ca.com/thread/241752267

     

    Best Regards,
    Patrick



  • 4.  RE: Re: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Posted Nov 09, 2020 04:22 PM
    hello experts,

    need clarification on the below use-case:

    1) users residing in amazon webservices Cognito
    2) my company has external partner whose applications are enabled with Siteminder and they have their own identity access management solution.

    Q- users of cognito need to gain access to applications that are enabled with siteminder. 
    Which is ideal on this usecase --  SAML or OIDC ??

    How can this federation be achieved, any inputs will be of great help !

    thanks!
    sri
    Original Message


  • 5.  RE: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Broadcom Employee
    Posted Nov 10, 2020 10:19 AM
    HI Folks, 

    The nature of support for AWS Cognito is noted here:
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/configuring/use-ca-single-sign-on-as-openid-connect-provider/using-siteminder-openid-connect-provider-for-aws-cognito.html
    Original Message


  • 6.  RE: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Posted Nov 10, 2020 02:37 PM
    Herbert,

    nice, article !
    thanks of posting this document.

    Q) Siteminder accessing AWS Cognito service is available only from release 12.8.03 ?
    Q) Does any of the prior release of siteminder i.e. 12.8, 12.7 has work around in place to access Cognito userpool ?

    Can you please comment on any of the above questions, this will be of great help for us on the on-going implementation - Siteminder & Cognito UserPool.

    Thanks !
    Sri 


    Original Message


  • 7.  RE: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Broadcom Employee
    Posted Nov 10, 2020 02:48 PM
    HI.... 

    The AWS Cognito support was added in the 12.8.03 release.  That is the first release where it is supported.  Code changes in 12.8.03 that enabled this were around the implementation of JWKS endpoint that Cognito would support.    I do not know if there are any workarounds to help with userpool prior to 12.8.03.
    Original Message


  • 8.  RE: How can you integrate/federate SSO(SiteMinder) with Amazon Cognito

    Posted Nov 10, 2020 02:57 PM
    great, thank you for the swift response !

    In case if you hear anything on this subject going further, please do post the updates here accordingly..

    Thanks !
    Sri
    Original Message