Hi, one of my customer has a new requisite to work with OpenID Connect.
I see that it is supported from CA Single Sign On from 12.7 but it requires CA Access Gateway.
Which is the minimum version for CA Access Gateway to support OpenID Connect endpoints?
It is enough to enable federation during CA Access Gateway installation to get the new endpoints available?
If the SSO Version is 12.7, then your Access gateway version can be 12.7 or less than that,
Question : It is enough to enable federation during CA Access Gateway installation to get the new endpoints available?
Answer : From a CA AG perspective yes, enabling federation during CA AG configuration process is enough to have the new endpoints available. Additionally I'd recommend enabling SSL (https) on CA AG apache layer.
Hi, thank you for the reply, anyway i guess that CA Access Gateway must also be 12.7 or newer, anyway the required endpoint will not be deployed. Am i right?
Correct it has to be R12.7 or Higher. My recommendation is to evaluate Customer use cases and then see if R12.7 suffices OR should we use R12.8 as it has much broader set of feature support for OIDC.