Symantec Access Management

  • Private Community
 View Only

 SiteMinder: HTTPS access redirected to HTTP access

MARUBUN SUPPORT's profile image
MARUBUN SUPPORT posted Jul 04, 2025 03:12 AM

Hello Team,

Product: CA SSO (SiteMinder)
System Structure: [AWS ALB] --- [SiteMider Web Agent] ...
 
We are changing a HTTP URL to a HTTPS URL.
A access to the HTTPS URL is redirected another access to the HTTP URL.

Step 1. Access to https://test- ... .co.jp/aaaaaa/
Step 2. Login in http://sv015773 ... co.jp/siteminderagent/formsja/login.fcc?TYPE= ... &TARGET=-SM-http%3a%2f%2ftest- ...
Step 3. Jump to http://test- ... .co.jp/aaaaaa/

Other HTTP URLs will be remained with no change:
http://test- ... co.jp/bbbbbbb/
http://test- ... co.jp/ccccccc/ 
etc.

AWS ALB forwards HOST header to backend.
Do you have a idea to solve this issue?

Does the following Kb become a solution to this issue?
https://knowledge.broadcom.com/external/article?articleNumber=260487
SiteMinder : Proxy/LoadBalancer and backend Web Agent
... HTTPSPorts and GetPortFromHeaders ACO parameter ...

Regards,
MARUBUN

Peter Burant's profile image
Broadcom Employee Peter Burant posted Jul 04, 2025 12:21 PM

Hi MARUBUN,

Yes, this sounds like a scenario in which you need to set HTTPSPorts and GetPortFromHeaders.  You'll want to set HTTPSPorts to any ports that the web server with the web agent listens on.  If that web server is using default ports, you'll want to set HTTPSPorts=80,443 and GetPortFromHeaders-yes.  With this configuration, when the web agent receives a request on one of these ports and needs to respond with a redirect, the agent will form the redirect with the HTTPS protocol even if the agent received the request via HTTP.

Regards,
Pete