Symantec Access Management

Expand all | Collapse all

SiteMinder does not support HTTP-Redirect for Remote ACS URLs

  • 1.  SiteMinder does not support HTTP-Redirect for Remote ACS URLs

    Posted 05-18-2021 06:59 AM
    Dears,

    We have one application (SP) which only support the HTTP-Redirect method for accepting the SAML token posted by any IDP (SiteMinder). But since SiteMinder does not support this HTTP-Redirect method anymore for posting the SAML token and will use the other methods, it will not be accepted by the SP. In this Scenario, do we have any solution or any work around to overcome this challenge ?

    Your Support on this would be highly appreciated.


    Best Regards


  • 2.  RE: SiteMinder does not support HTTP-Redirect for Remote ACS URLs

    Posted 06-06-2021 03:25 AM
    Dears,

    Any leads on this would be really helpful.

    Best Regards


  • 3.  RE: SiteMinder does not support HTTP-Redirect for Remote ACS URLs

    Broadcom Employee
    Posted 06-07-2021 10:02 PM

    Hi Mohammad,

    I've never heard of anyone using REDIRECT binding for SAMLResponse (assertion).  Is there a chance you are thinking of ARTIFACT binding?  ARTIFACT binding would result in the browser making a GET request to the SP, however, the GET request will only contain a reference to the assertion (SAMLResponse) that the SP would need to retrieve directly from the IDP via a configured backchannel connection.  ARTIFACT binding is old SAML 1.1 technology and is seldom used today. 

    Siteminder IDP supports only POST and ARTIFACT assertion bindings.  I'm not aware of any way to work around this.

    Regards,
    Pete




  • 4.  RE: SiteMinder does not support HTTP-Redirect for Remote ACS URLs

    Posted 06-14-2021 06:28 AM
    Only POST and ARTIFACT are supported by SAML for sending Response. REDIRECT can't be used.

    ------------------------------
    -- Sreekanth
    ------------------------------