Products
Applications
Support
Company
How To Buy
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Register
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Home
Communities
All Communities
Enterprise Software
Mainframe Software
Symantec Enterprise
Blogs
All Blogs
Enterprise Software
Mainframe Software
Symantec Enterprise
Events
All Events
Enterprise Software
Mainframe Software
Symantec Enterprise
VMware
Water Cooler
Groups
Enterprise Software
Mainframe Software
Symantec Enterprise
Members
Symantec Access Management
Private Community
View Only
Community Home
Threads
Library
Events
Members
Back to discussions
Expand all
|
Collapse all
sort by most recent
sort by thread
OpenID Auth Scheme
Jump to
Best Answer
Deepinder Singh
Sep 11, 2019 08:34 AM
Hello Community members, I am in the process of implementing the OpenID Auth scheme. I followed the Broadcom ...
Hongxu Liu
Sep 27, 2019 11:40 AM
Best Answer
Hello Deepinder, OpenID Auth scheme was an old design, not many people use it now. If you are trying ...
Sharath Yeramalla
Oct 01, 2020 05:10 PM
Hi There, Am using 12.7, isn't this new feature of OpenID is not available in 12.7 pls?------------------------------------------- ...
Sharath Yeramalla
Oct 01, 2020 05:49 PM
Thanks. Do you have any insights/references that you would like to share in integrating the angular ...
1.
OpenID Auth Scheme
0
Recommend
Deepinder Singh
Posted Sep 11, 2019 08:34 AM
Reply
Reply Privately
Options Dropdown
Hello Community members,
I am in the process of implementing the OpenID Auth scheme. I followed the Broadcom document:
https://docops.ca.com/ca-single-sign-on/12-8/en/configuring/policy-server-configuration/authentication-schemes/openid-authentication-scheme
And I configured both OpenID.fcc and OpenIDprovider.xml with the provider related information.
But when I am hitting the URL, I am getting the error in smtracedefault.log as
"[09/11/2019][16:46:22.834][16:46:22][18484][18044][SmAuthUser.cpp:775][ServerTrace][][][][][][][][][][][][][][][][][][][][Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843][SMAuthOpenID:preAuthenticate:
Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843]".
Has anyone else has faced this issue, or if anyone can help what could have been wrongly configured.
------------------------------
Regards,
Deepinder Singh,
Consultant
EVRY India Pvt Ltd.
------------------------------
2.
RE: OpenID Auth Scheme
Best Answer
0
Recommend
Broadcom Employee
Hongxu Liu
Posted Sep 27, 2019 11:40 AM
Reply
Reply Privately
Options Dropdown
Hello
Deepinder,
OpenID Auth scheme was an old design, not many people use it now.
If you are trying to implement OpenID, try
1. use latest policy server 12.8sp2 or sp3, since only newer version has new fixes available.
2. newer OpenID integration is based on federation model, which will deliver better and smoother outcome result.
https://docops.ca.com/layer7-siteminder/12-8-03/en/configuring/use-ca-single-sign-on-as-openid-connect-provider
Comparison of different releases:
https://docops.ca.com/layer7-siteminder/12-8-03/en/release-notes/release-comparison
Thanks
Hongxu
Original Message
Original Message:
Sent: 09-11-2019 08:34 AM
From: Deepinder Singh
Subject: OpenID Auth Scheme
Hello Community members,
I am in the process of implementing the OpenID Auth scheme. I followed the Broadcom document:
https://docops.ca.com/ca-single-sign-on/12-8/en/configuring/policy-server-configuration/authentication-schemes/openid-authentication-scheme
And I configured both OpenID.fcc and OpenIDprovider.xml with the provider related information.
But when I am hitting the URL, I am getting the error in smtracedefault.log as
"[09/11/2019][16:46:22.834][16:46:22][18484][18044][SmAuthUser.cpp:775][ServerTrace][][][][][][][][][][][][][][][][][][][][Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843][SMAuthOpenID:preAuthenticate:
Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843]".
Has anyone else has faced this issue, or if anyone can help what could have been wrongly configured.
------------------------------
Regards,
Deepinder Singh,
Consultant
EVRY India Pvt Ltd.
------------------------------
3.
RE: OpenID Auth Scheme
0
Recommend
Sharath Yeramalla
Posted Oct 01, 2020 05:10 PM
Reply
Reply Privately
Options Dropdown
Hi There,
Am using 12.7, isn't this new feature of OpenID is not available in 12.7 pls?
Original Message
Original Message:
Sent: 09-27-2019 11:39 AM
From: HONGXU LIU
Subject: OpenID Auth Scheme
Hello
Deepinder,
OpenID Auth scheme was an old design, not many people use it now.
If you are trying to implement OpenID, try
1. use latest policy server 12.8sp2 or sp3, since only newer version has new fixes available.
2. newer OpenID integration is based on federation model, which will deliver better and smoother outcome result.
https://docops.ca.com/layer7-siteminder/12-8-03/en/configuring/use-ca-single-sign-on-as-openid-connect-provider
Comparison of different releases:
https://docops.ca.com/layer7-siteminder/12-8-03/en/release-notes/release-comparison
Thanks
Hongxu
Original Message:
Sent: 09-11-2019 08:34 AM
From: Deepinder Singh
Subject: OpenID Auth Scheme
Hello Community members,
I am in the process of implementing the OpenID Auth scheme. I followed the Broadcom document:
https://docops.ca.com/ca-single-sign-on/12-8/en/configuring/policy-server-configuration/authentication-schemes/openid-authentication-scheme
And I configured both OpenID.fcc and OpenIDprovider.xml with the provider related information.
But when I am hitting the URL, I am getting the error in smtracedefault.log as
"[09/11/2019][16:46:22.834][16:46:22][18484][18044][SmAuthUser.cpp:775][ServerTrace][][][][][][][][][][][][][][][][][][][][Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843][SMAuthOpenID:preAuthenticate:
Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843]".
Has anyone else has faced this issue, or if anyone can help what could have been wrongly configured.
------------------------------
Regards,
Deepinder Singh,
Consultant
EVRY India Pvt Ltd.
------------------------------
4.
RE: OpenID Auth Scheme
0
Recommend
Sharath Yeramalla
Posted Oct 01, 2020 05:49 PM
Reply
Reply Privately
Options Dropdown
Thanks.
Do you have any insights/references that you would like to share in integrating the angular application with SiteMinder for OIDC flow(openId).
Original Message
Original Message:
Sent: 10-01-2020 11:15 AM
From: Sharath Yeramalla
Subject: OpenID Auth Scheme
Hi There,
Am using 12.7, isn't this new feature of OpenID is not available in 12.7 pls?
Original Message:
Sent: 09-27-2019 11:39 AM
From: HONGXU LIU
Subject: OpenID Auth Scheme
Hello
Deepinder,
OpenID Auth scheme was an old design, not many people use it now.
If you are trying to implement OpenID, try
1. use latest policy server 12.8sp2 or sp3, since only newer version has new fixes available.
2. newer OpenID integration is based on federation model, which will deliver better and smoother outcome result.
https://docops.ca.com/layer7-siteminder/12-8-03/en/configuring/use-ca-single-sign-on-as-openid-connect-provider
Comparison of different releases:
https://docops.ca.com/layer7-siteminder/12-8-03/en/release-notes/release-comparison
Thanks
Hongxu
Original Message:
Sent: 09-11-2019 08:34 AM
From: Deepinder Singh
Subject: OpenID Auth Scheme
Hello Community members,
I am in the process of implementing the OpenID Auth scheme. I followed the Broadcom document:
https://docops.ca.com/ca-single-sign-on/12-8/en/configuring/policy-server-configuration/authentication-schemes/openid-authentication-scheme
And I configured both OpenID.fcc and OpenIDprovider.xml with the provider related information.
But when I am hitting the URL, I am getting the error in smtracedefault.log as
"[09/11/2019][16:46:22.834][16:46:22][18484][18044][SmAuthUser.cpp:775][ServerTrace][][][][][][][][][][][][][][][][][][][][Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843][SMAuthOpenID:preAuthenticate:
Discovery failed for the identifier
https://auth.test4.buypass.no/auth/realms/bpcode/protocol/openid-connect/auth?client_id=evry-oidc&response_type=code&scope=openid&redirect_uri=http%3A%2F%2Fiam.tanvidemo.com%3A8880%2Faffwebservices%2FOpenid%2Ftest.html&state=b2F1dGhhY3Q9b2lkYy1hY3Rpb24AAdxkXQjO3AF0YXJnZXQ9aHR0cHM6Ly90ZXN0b2lkYy5icGNvZGVkZW1vLm5vL25mL2F1dGgvZG9PQXV0aD9hY3Q9b2lkYy1hY3Rpb247bmY9O3d2PTA%3D&login_hint=+4746811843]".
Has anyone else has faced this issue, or if anyone can help what could have been wrongly configured.
------------------------------
Regards,
Deepinder Singh,
Consultant
EVRY India Pvt Ltd.
------------------------------
×
New Best Answer
This thread already has a best answer. Would you like to mark this message as the new best answer?
Copyright 2019. All rights reserved.
Powered by Higher Logic