Known Issues for Security

External authentication token is not properly handled by iOS Hybrid Web Container (HWC).

For an external token to be passed to and used by iOS Hybrid Web Container for performing SSO, make the call to setHttpHeaders before starting the client engine by placing [self setHttpHeaders] in the first line in the startEngine function. See Setting HTTP Headers in Developer Guide: Mobile Workflow Packages.

Credentials screen does not reappear after entering wrong data for Workflow DCN

When using SiteMinder and checkImpersonation, a user is authenticated using both a user name and token. SiteMinder checks if the user name matches the token. If the user name and token do not match, the user cannot pass the SiteMinder authentication.

Workaround: None. Works as designed. Will be re-evaluated in a future release.

Login fails with DIGEST-MD5 authentication method in LDAPLoginModule.

Workaround: Use the DigestMD5AuthenticationFormat property and set it to DN. You can only use a user name for the DigestMD5AuthenticationFormat property if the LDAP server supports it. User name formats like u:username are not supported. When using the DN, remember to use a distinguished name instead of user name for the BindDN property. See LDAP Configuration Properties in Security.