Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-8039

IIS WPA4 can not read userid attribute out of policy response if com.sun.identity.agents.config.userid.param.type=LDAP

    XMLWordPrintable

    Details

    • Rank:
      1|hzqswn:

      Description

      IIS WPA4 can not read userid attribute out of policy response if com.sun.identity.agents.config.userid.param.type=LDAP

      It tries to read it earlier than that data is available (from cache)

      when userid value is read from SESSION - everything is fine.

      This was discovered when trying to set up Basic authentication.
      Parameters for the agent are:

      com.sun.identity.agents.config.userid.param.type=LDAP
      com.sun.identity.agents.config.userid.param=sAMAccountName
      

      The information comes back correctly from OpenAM in a policy Response:

      <AttributeValuePair>
      <Attribute name="sAMAccountName"/>
      <Value>my_userid</Value>
      </AttributeValuePair>
      

      The agent should then set the user context and the logs show:

      OpenAMHttpModule(): context user set to "my_userid"
      

      but it does not appear.

        Attachments

          Activity

            People

            mareks Mareks Malnacs
            nathalie.hoet Nathalie Hoet
              edwardb edwardb
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: