Hi All,
May be i did configuration wrongly, would like to understand better on CA gateway acting as Service Provider (multiple ACO)
Trying to separate configuration based on applications.
My configuration: (hard to write down, but will try to make it scene).
2 AGENT NAME (dev.smspsui.com, dev.partners.com)
2 ACO (dev_aco_smspsui.com, dev_aco_partners.com)
2 Virtual hosts (dev.smspsui.com, dev.partners.com) -------------> server.conf
proxyrules.xml ----------(configured to back end apps on IIS)
https://dev.xxxxxxx.com/affwebservices/assertionretriever ------------------> is giving same output
dev.smspsui.com to use with proxy UI only
dev.partners.com (actual application)
Now the ISSUE time.
- In above mentioned ACO, i did set cookie provider as (.smspsui.com, .partners.com) respectively in both ACO
- The .partners.com is not honored that is set in dev_aco_partners.com, when i access application IDP initiated, at SP side again login page is prompted (because cookie is set to .smspsui.com)
- Application is working once cookie domain is set as .partners.com in (dev_aco_smspsui.com).
QUESTION TIME:
-
cookie domain set in dev_aco_partners.com, is not honored?
- Apart form separate logging, is there no use of having separate ACO for each VHOST.
- Is some configuration done wrong.
- Is it possible to disable Federation service on default site dev.smspsui.com and enable Federation service only on dev_aco_partners.com.
------------------------------
Regards,
Gowtham.
------------------------------