Unable to login to CAPC

Document ID : KB000076402
Last Modified Date : 04/04/2018
Show Technical Document Details
Question:
When trying to login to CAPC we are receiving an Invalid Redirector URL error.  

User-added image
Environment:
CA Performance Management 3.5+
Answer:
This error is caused by the URL not matching the filter set up prior in the InstallDirectory/PerformanceCenter/sso/webapps/sso/WEB-INF/sso.properties file.  Construct the filter properly based off of the URL's you want to restrict paying special attention to the port specified if recently changing between HTTP and HTTPS.
Additional Information:
Product Documentation:

https://docops.ca.com/ca-performance-management/3-5/en/administrating/single-sign-on/set-up-https-for-ca-single-sign-on/limit-single-sign-on-redirection

Excerpt from the CAPM 3.5 documentation, current as of 4/3/2018:

Single Sign-On out of the box supports authentication for any host. However, you can limit which hosts Single Sign-On redirects to.

Follow these steps:

  1. Open the following file:

    InstallDirectory/PerformanceCenter/sso/webapps/sso/WEB-INF/sso.properties

    Note: /opt/CA is the default installation directory.

  2. Add an entry for the sso.redirect.patterns property:

    sso.redirect.patterns=
  3. For each URL to which Single Sign-On is allowed to redirect, specify string values that are separated by pipes ("|").
    Example:

    sso.redirect.patterns=http://hostname:8181/|http://hostname.ca.com:8181

    Any URL that begins with something else throws an error when the user tries to log in. Without an entry, Single Sign-On redirects are unrestricted.