Inter-site SSO fails on Internet Explorer (IE) 7
Originally Published: 2008-04-24
Article Number
Applies To
Inter-Site Single Sign-On (ISSO)
Access Manager 4.7 agent
Issue
Two domains are configured, A and B for Inter-Site Single Sign-On (ISSO), where domain A act as an ISSO master and B as an slave. When a user tries to access a resource on master Domain A after successfully authentication on Domain B the user is re-prompted to authenticate.
Cause
Internet Explorer 7 blocks the third party cookies with no privacy policy.
Resolution
Here are the steps to make it work.
1) Access domain B first and authenticate as usual.
2) You could see a small spy eye icon at the bottom of the IE browser which appears if it blocks any cookies for a site.
3) Double click on it to see the privacy report. It shows that it is blocking the ClearTrust cookie from domaina.com. At the bottom there is an option to change it to allow cookies from this site. Select this option.
4) Repeat the ISSO use case from slave to master now. It should now work correctly.
Related Articles
What are the requirements for inter-component sharing data from RSA Web Threat Detection? Number of Views How to Install a Third Party Certificate into RSA enVision Number of Views Set the RSA Authentication Manager internal database password to optional Number of Views How to access the aveksaServer.log and aveksaServerInfo.log files in RSA Identity Governance & Lifecycle Number of Views How to enable RSA SecurID protection on Microsoft Outlook Web Access (OWA) Exchange ActiveSync (EAS) and Microsoft Outlo… Number of Views
Trending Articles
RSA Authentication Manager Upgrade Process RSA Release Notes for RSA Authentication Manager 8.8 RSA RADIUS Server service failed to start in the RSA Authentication Manager 8.1 Operations Console Microsoft Entra ID External MFA - Relying Party Configuration Using OIDC - RSA Ready Implementation Guide RSA Release Notes: Cloud Access Service and RSA Authenticators
Don't see what you're looking for?
