siteminder header value

Hi,

I am not sure if this is the correct place to ask. I am using CA siteminder for authentication. So after successful login I am supposed to get logged in user name from siteminder header. So if the target url is a Jboss application the in HttpServletRequest object request.getHeader("sm_user") returns an encrypted value. whereas if I target url is CQ5 application page then on that page slingRequest.getHeader("sm_user") returns unencrypted value of user name. Can anyone tell me why this happening?

Thanks

-Dipen-