Symantec Access Management

Expand all | Collapse all

Tomcat 8 integration using SAML

Jump to Best Answer
  • 1.  Tomcat 8 integration using SAML

    Posted 07-28-2017 12:56 PM

    Siteminder 12.7
    Tomcat 8.0
    Trying to integrate SAML on the Tomcat application server. Curious to know if CA supports this integration.



  • 2.  Re: Red-hat 8.0 integration using SAML

    Posted 07-28-2017 03:06 PM

    Using Siteminder as IDP



  • 3.  Re: Red-hat 8.0 integration using SAML
    Best Answer

    Broadcom Employee
    Posted 07-28-2017 04:59 PM

    Hello sso_rajkiran,  CA SSO (aka SiteMinder) R12.7  is not certified for RHLinux 8.  Hope this answers your question.  The Platform Support matrix for R12.7 is here: SAP Portal Services 

    Take care. - Vijay



  • 4.  Re: Tomcat 8 integration using SAML

    Broadcom Employee
    Posted 07-31-2017 12:59 PM

    Hi Rajkiran

     

    I believe that the above reply does not answer your question. You are asking about Tomcat 8, and Vijay's reply was for Red Hat Linux 8.

     

    Are you asking whether the SSO Federation Web Services can be deployed on Tomcat 8 so that SSO can act as the IDP?

    Or are you asking whether SSO can federate with some application on Tomcat where SSO is the IDP and Tomcat is the SP?

     

    If you are asking the first question, then you need to look up the platform support matrix (PSM) for whatever version of SSO that you are using for your web agent and web agent option pack (note that r12.7 is a release of the Policy Server and Access Gateway only). See the product documentation for details on how to find your PSM. If you are using SSO r12.52 and a 64-bit web agent, then section 4.2 of the PSM states that Tomcat 8 is supported for the Web Agent Option Pack only on RHEL 6 or 7. There is no 32-bit support for Tomcat 8.

     

    However, in general CA recommends using the CA Access Gateway (formerly known as Secure Proxy Server) to host the Federation Web Services. It's easier than trying to deploy them on one of the other application servers.

     

    If you are asking the second question, then federation should work fine as long as Tomcat 8 is supporting standard federation protocols.

     

    Pearse



  • 5.  Re: Tomcat 8 integration using SAML

    Posted 07-31-2017 01:18 PM

    Pearse,

     

    Thank you for the reply,
     Are you asking whether the SSO Federation Web Services can be deployed on Tomcat 8 so that SSO can act as the IDP?

    using Federation and SPS.



  • 6.  Re: Tomcat 8 integration using SAML

    Posted 07-31-2017 01:19 PM

    Vijay had it right as per our earlier requirements.