SSO Failing When Using DCC Tunneling Between Federation And WebGate Protected Resources

(Doc ID 2131021.1)

Last updated on SEPTEMBER 26, 2017

Applies to:

Oracle Identity Federation - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

DCC Tunneling has been configured for federation (IdP) as outlined in Damien Carru's blog post on the subject, https://blogs.oracle.com/dcarru/entry/dcc_http_reverse_proxy_with

The Federation authentication works.  There were also WebGate protected resources that used DCC authentication previously.  When attempting to access a WebGate protected resource after authenticating using the federation IdP, the user is challenged for authentication.  Similarly, after authenticating with federation, users accessing the WebGate protected resources are forced to reauthenticate.  The expectation/desire is to have the user sign on only once.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms