Web client (HTTP and HTTPS) user authentication

Web clients can log in to SecureTransport directly or through the SiteMinder single sign-on (SSO) portal. Depending on the SiteMinder configuration, when a web client logs in, SecureTransport can require a client certificate, which it presents to SiteMinder for authentication.

When a web client logs on through the SiteMinder SSO portal, the portal authenticates the user and provides the client with a SiteMinder session cookie. When the client tries to access a SecureTransport resource, SecureTransport presents the user’s session cookie to SiteMinder for authentication.

Note Session cookies are by domain, so the SiteMinder SSO portal must be in the same domain as the SecureTransport Server.
Note The SiteMinder SSO portal must be accessed using a fully-qualified domain name (FQDN) because SiteMinder uses domain cookies, and it is possible that different browsers can handle the conversion from partial name to FQDN incorrectly. In the latter case, access to the SSO portal can be denied.

Related topics:

Related Links