Inter-site SSO fails on Internet Explorer (IE) 7
Originally Published: 2008-04-24
Article Number
Applies To
Inter-Site Single Sign-On (ISSO)
Access Manager 4.7 agent
Issue
Two domains are configured, A and B for Inter-Site Single Sign-On (ISSO), where domain A act as an ISSO master and B as an slave. When a user tries to access a resource on master Domain A after successfully authentication on Domain B the user is re-prompted to authenticate.
Cause
Internet Explorer 7 blocks the third party cookies with no privacy policy.
Resolution
Here are the steps to make it work.
1) Access domain B first and authenticate as usual.
2) You could see a small spy eye icon at the bottom of the IE browser which appears if it blocks any cookies for a site.
3) Double click on it to see the privacy report. It shows that it is blocking the ClearTrust cookie from domaina.com. At the bottom there is an option to change it to allow cookies from this site. Select this option.
4) Repeat the ISSO use case from slave to master now. It should now work correctly.
Related Articles
What are the requirements for inter-component sharing data from RSA Web Threat Detection? Number of Views System.OutOfMemoryException: Insufficient memory to continue the execution of the program. Number of Views RSA Identity Governance & Lifecycle Entitlements Data Collector (EDC) failure EC[31002] Number of Views How to Install a Third Party Certificate into enVision Number of Views Get Java Auth API sample code to authenticate consistently with 'Requires Name Lock' enabled Number of Views
Trending Articles
Passwordless Authentication in Windows MFA Agent for Active Directory – Quick Setup Guide RSA Authentication Manager Upgrade Process RSA Authentication Manager 8.9 Release Notes (January 2026) An example of SSO using SAML and ADFS with RSA Identity Management and Governance 6.9.x RSA MFA Agent 2.3.6 for Microsoft Windows Installation and Administration Guide
Don't see what you're looking for?
