Inter-site SSO fails on Internet Explorer (IE) 7
Originally Published: 2008-04-24
Article Number
Applies To
Inter-Site Single Sign-On (ISSO)
Access Manager 4.7 agent
Issue
Two domains are configured, A and B for Inter-Site Single Sign-On (ISSO), where domain A act as an ISSO master and B as an slave. When a user tries to access a resource on master Domain A after successfully authentication on Domain B the user is re-prompted to authenticate.
Cause
Internet Explorer 7 blocks the third party cookies with no privacy policy.
Resolution
Here are the steps to make it work.
1) Access domain B first and authenticate as usual.
2) You could see a small spy eye icon at the bottom of the IE browser which appears if it blocks any cookies for a site.
3) Double click on it to see the privacy report. It shows that it is blocking the ClearTrust cookie from domaina.com. At the bottom there is an option to change it to allow cookies from this site. Select this option.
4) Repeat the ISSO use case from slave to master now. It should now work correctly.
Related Articles
What are the requirements for inter-component sharing data from RSA Web Threat Detection? Number of Views How to Install a Third Party Certificate into RSA enVision Number of Views How to Install a Third Party Certificate into enVision Number of Views Get Java Auth API sample code to authenticate consistently with 'Requires Name Lock' enabled Number of Views How to correctly handle New PIN Rejected in custom RSA Authentication Agent Number of Views
Trending Articles
Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory RSA Authentication Manager 8.9 Release Notes (January 2026) Artifacts to gather in RSA Identity Governance & Lifecycle RSA Governance & Lifecycle 8.0.0 Administrators Guide RSA Governance & Lifecycle 8.0.0 Installation Guide
Don't see what you're looking for?
