Environment
Novell Access Gateway For Cloud
Situation
When
users try and access services at http://apps.google.com and click the "Sign In" link in the top right
corner of page, the following form is presented to the user:
"Enter you domain name: www. <> and go to <Email>" (selection list includes email, calendar, docs, video, sites, domain mgmt)
If however the user tries to access https://apps.google.com (note https protocol), the user experience is very different. When the "Sign In" link is clicked at the Google site, the user is prompted with a google login form to enter credentials (including a password) and not redirected back to the AG4C appliance. Because the user's password has been changed by the AG4C appliance, the user's login attempt will fail. This finally results in a browser redirect to the configured SSO login URL and the user then sees the AG4C login page.
This issue only occurs with apps.google.com and none of the other google services (docs, mail, etc).
"Enter you domain name: www. <> and go to <Email>" (selection list includes email, calendar, docs, video, sites, domain mgmt)
Assuming the user enters a valid domain name as configured in the AG4C connector configuration and clicks the "Go" button, the user is redirected to the AG4C login form.
After submitting the provisioned users credentials in the AG4C login form (and credentials are validated successfully) the browser is redirected back to the
google application selected in the earlier step.
If however the user tries to access https://apps.google.com (note https protocol), the user experience is very different. When the "Sign In" link is clicked at the Google site, the user is prompted with a google login form to enter credentials (including a password) and not redirected back to the AG4C appliance. Because the user's password has been changed by the AG4C appliance, the user's login attempt will fail. This finally results in a browser redirect to the configured SSO login URL and the user then sees the AG4C login page.
This issue only occurs with apps.google.com and none of the other google services (docs, mail, etc).
Resolution
Use the http protocol when accessing apps.google.com. The issue appears to be google related and no code change on the AG4C appliance will alter the behaviour..