Skip navigation
All Places > CA Security > Blog > 2016 > August
2016

News & Announcements

General Availability Announcement for CA Privileged Access Manager Server Control

End of Support Announcement for CA SSO r6 Agent SDK

End of Support Announcement for CA Single Sign-On Agent for SAP ITS 5.6

The CA World '16 Session Catalog is Now Live!

 

Tech Tips & Support Docs

Tech Tip : CA Single Sign-On :Policy Server:How to encrypt password in Sm.registry file without using SmConsole

JasperSoft NT Service for IMAG (Apache Tomcat)

Tech Tip : CA Single Sign-On ::What information is stored in the SMSESSION Cookie

[SLIDES] Why Upgrade to CA Privileged Access Manager Server Control

Tech Tip - CA Identity Management and Governance Last week's Knowledge Documents

Chat Transcript: Office Hours for CA Privileged Access Management [AUGUST 2016]

Cloud Web Services to/from Identity Management

Tech Tip - CA PAM: RDP Application

How to enhance Task Persistance DB performance when running on Oracle 11gR2 DB

CA SSO : RHEL7 and Semaphores

Active Directory 1000 page limit and ldapsearch -E option

 

Videos

Simplifying Secure Server Access Control: Why Upgrade to CA Privileged Access Manager Server Control

 

Answered Questions

sm-xpsxps ERRORS after upgrade 12.5 SP3 to 12.52 sp1

Moving policy objects configuration to other environments

CA PIM 12.9 - Session Recording

Causes for outage due to trusted host issue

 

Open Questions

Click on a thread below and help 'em out!

smconsole not launching in xwindow display

SSL Error

IWA server startup issue

SMPUBLISH in remote server

Siteminder 12.52 CR04 Admin UI

What are the possible scnerios Siteminder returns 401 response?

How to read objectGUID / binary attribute

IDM Question & answers data migration from prov to user store (CA Directory)

List account report ldapsearch or etautil

Can we get a proper documentation for identity manager TEWS integration with Siteminder. This is the part of our identity portal integration with identity manager, where in identity manager we are using custom Active Directory Authentication module. Custo

XPSImport does nt show federation objects

SiteMinder parallel upgrade R12SP3 to R12.52SP02

 

New Ideas

Click on an idea below and vote it up or down!

Allow offline download of CA PAM Client

Load Balancing capabilities for CA Access Gateway (formerly CA SPS)

Command line options for Policy server management console (smconsole)

Additional User Account Details in CA PAM

HP Tipping Point IPS appliance is  uncompatible with Xceedium

Filter for “Privileged Accounts” report

Ability to assign multiple target account under policy(transparent login)

Adding the user name in the PID request form

Unable to integrate Mcafee Web Gateway Web Portal with CA PAM 2.6

Account name on the request form

No Risk Authentication with Valid SMSESSION

Support for a modern HSM within Auth/RiskMinder

Support for vCenter Server 6.0 and PAM integration

Remove JBoss/Tomcat Agent limitations for modern Java applications

Enhancement Request for PeopleTools 8.55 ERP Agent

Support for Bluecoat SG Proxy 6.2.12.3

 

Upcoming Events

Click on an event below to RSVP and add it to your calendar!

Bridge Your Journey to the Cloud with Identity-as-a-Service [AUG 23]

CA + You: Solving Your API Challenges [AUG 24]

Office Hours for CA Single Sign-On: A Live Online Chat [AUG 25]

Payment Security: Aligning to a Broader “Digital Business Transformation” Agenda Panelists [AUG 31]

CA World '16

 

Thanks for answering questions this week...

justin_leong

Ujwol

GwanYu_Kim

wonsa03

News & Announcements

 

IMAG:  Active Directory Lab Env. with SSL/TLS Certs

G1GC (JVM Garbage Collection) for Identity Governance Wildfly

IMAG SQL Server Maintenance (Free)

 

Tech Tips & Support Docs

Tech Tip : CA Single Sign-On :: Policy Server:AgentConnectionMaxLifetime read multiple times from policy store

Tech Tip - CA Identity Management and Governance Last week's Knowledge Documents

Tech Tip : CA Single Sign-On :X.509 Cert Authentication with Apache Agent

Tech Tip - How to trace ActiveX for PIM Autologin

Tech Tip - CA Single Sign-On: Error 81 against AdvAuthExternalLDAPDir user directory

How to configure CA PAM to manage one unix account with another

Answered Questions

Does Splunk Webportal works via CA PAM?

SiteMinder r12.52 SP1 CR05 smkeyimport command error/failed 

CA Advanced Authentication with Siteminder

How-To Rollback Connector server.from SP4 to SP2

CA PAM - Endpoint connectivity

etautil for update account template in AD

SM Session Cookie not generated 

IWA for weblogic

Password Policy in Siteminder

Monitoring connection to 'XXXXX' failed. Retrying... no free connection for agent host 'XXXXX'

I am the idp and getting error message after adding encryption cert,

Executing SP garbageCollectTaskPersistence from a SQL client Or from a batch script

SM_EVENTID=13,Visit?

Secure Proxy - Issues post installation & configuration

CA Directory does not store DN value

Siteminder oAuth2.0 Implenetation

Seperate Key store from Policy Store

 

Open Questions

Click on a thread below and help 'em out!

 

Triggering Policies from BLTH

Variables in PIM

SSO Web Service Agent r12.52 SP1

Can we build a policy that only applies to employees at the firm <90 days?

XPSIMport fails during patching

IDM TaskPersistace DB Cleanup

General Advanced Authentication

smpolicysrv LAST_MESSAGE_TIME value

 

New Ideas

Click on an idea below and vote it up or down!

Expand RDP Window in CA PAM

CA SPS : STS : Automate Logging Configurations

CA SPS : STS : CheckPoint Logging

Protect IDMMANAGE

Enable web agent to handle Ajax 302 redirects to validate 3rd party cookie domain

upgrade progress

Password Management into PAM Dashboard

Allow download of CA certificates and CRLs

Remove CRL Requirement for Server SSL Certificates

GM - Add scheduling to Share My Work

Configurable LDAP lookups on import

Enhance visibility of the Pending Area for Certification tasks

Publish and Unpublish certifications tasks

 

Upcoming Events

Click on an event below to RSVP and add it to your calendar!

Office Hours for CA Privileged Access Management: A Live Online Chat [AUG 18]

Bridge Your Journey to the Cloud with Identity-as-a-Service [AUG 23]

Office Hours for CA Single Sign-On: A Live Online Chat [AUG 25]

Payment Security: Aligning to a Broader “Digital Business Transformation” Agenda Panelists [AUG 31]

CA World '16

 

Thanks for answering questions this week...

Ellery

wonsa03

Ujwol

KennyV

lutch01

SumeetM

Kevin19

mcdju01

Chris_Ryan_Thomas

Sharana

News & Announcements

Register for CA World '16 | November 14 – 18, 2016

CA Privileged Access Manager 2.6.x: Administration Foundations 200

DocOps--Custom PDFs and ePubs are now Available

Community Hack - Assigning Labels to Connections

 

Tech Tips & Support Docs

Tech Tip - CA Single Sign-On: Policy Server fails to locate certificate in smkeydatabase

Tech Tip - CA Identity Management and Governance Last week's Knowledge Documents

Tech Tip - Discover Privileged Account Wizard (No Endpoint Options) 

Chat Transcript: Office Hours for CA Advanced Authentication [AUGUST 2016]

Tech Tip - CA Single Sign-On: Name Identification for assertion

Tech Tip - CA Single Sign-On: "Unable to verify tryno count" error

Tech Tip ::Authentication Behavior when multiple users have same UID

Tech Tip : CA Single Sign-On :: Policy Server:How to Configure Enhanced Session Assurance

Tech Tip : CA Single Sign-On :: CA Access Gateway:How to troubleshoot Advanced Authentication Flow Application (Session Assurance)

Tech Tip : CA Single Sign-On: R12.52SP1CR5 Policy server crash when load JVM

[SLIDES] Week 6 - AWS Controls

SSO Hardening & Session Security

 

Videos

Privileged Access Management: Supplementing with fine-grained Host controls

Privileged Access Management: Securing the Cloud

 

Answered Questions

Error while importing policy store

PERL API - how to get the respones of a rule within a policy

Does CA Single Sign-On 12.52 support a load balancer between Policy Server and ADLDS Policy Stores?

How redirect an alert to another software

Change password SAML

PERL API Setter Method Not Working

Task Session ID (or other unique task ID) in PX?

PIM12.9SP1  TLS

WSFED Resource Partner Entity ID Not Showing in "Local Identity Provider" Drop-down List

 

Open Questions

Ldap and OTP

CA PAM 2.7 release schedule?

CA PAM - VIP requirement

CA Strong authentication-Invalid password format

Deploying AFM Wizard using WebLogic Application Server

 

New Ideas

Default PCP(Password Composition Policy) to view

Enhance the CA Single Sign On WebSphere Application Server Agent to allow HTTPONLY cookies

Enhance the CA Single Sign On WebSphere Application Server Agent to allow SECURE cookies

Control the Concurrent Users Logged to PAM

Session Recording: Live View

Enhance the CA Single Sign On WebLogic Application Server Agent to allow SECURE cookies

Enhance the CA Single Sign On WebLogic Application Server Agent to allow HTTPONLY cookies

ASP.NET Core Support 

Precise Time/Date setting for Audit Logs

Ubuntu 14.04.1 4.2.0-27-gerneric support fro PIM 12.8 SP1

DB2 Purescale support from PIM

Make the Policy Server PERL API complete.

Application and Directory Isolation

Move Registry settings to UI

Log File type 

Security Issues with Error Messages

Feature to run script on RDP log in and out

 

Upcoming Events

     Self-Service Support Webcast: Featuring KB Articles [Aug. 9th]

Simplifying Secure Server Access Control: Why Upgrade to CA Privileged Access Manager Server Control [AUG 16]

Office Hours for CA Privileged Access Management: A Live Online Chat [AUG 18]

Office Hours for CA Single Sign-On: A Live Online Chat [AUG 25]

Payment Security: Aligning to a Broader “Digital Business Transformation” Agenda Panelists [AUG 31]

 

Thanks for answering questions this week...

Ujwol

wonsa03 

Karmeng

RobM

Manjari_Gangwar

william.k.lee

GwanYu_Kim

News & Announcements

Training Available - CA Identity Suite 12.6.8: Implementation Foundations 200

Register for CA World '16 | November 14 – 18, 2016

 

Tech Tips & Support Docs

Tech Tip : CA Single Sign-On: WAMUI R12.52Sp2 not install as Windows service when install in D drive

Tech Tip : CA Single Sign-On :X.509 Cert Authentication with IIS Agent

Tech Tip - CA Identity Management and Governance Last week's Tech Docs

Big Data in Cybersecurity [SLIDES]

Tech Tip - CA Privileged Identity Manager: Changing the IP Address from ENTM Server

Latest Knowledge Base Articles for Single Sign-On (Formerly CA SiteMinder) [29/7/2016]

[SLIDES] Week 5 - Fine-Grained Host Controls

Chat Transcript: Office Hours for CA Single Sign-On [JULY 2016]

Tech Tip : How to create self signed RootCA/Server/User Certificates using OpenSSL

Tech Tip : CA Single Sign-On: How to manually uninstall IIS web agent

Tech Tip : CA Single Sign-On: Unable to startup apache server with libsmerrlog.so error

 

Videos

Big Data in Cybersecurity

 

Answered Questions

Access Role not getting removed from console

ACO ProxyHeaders Parameter

Sending Multi-valued attributes in assertion

CA Directory R12 Sp18 Backup and Restore plan

CA PAM - Windows Proxy

Session Assurance - SessionDNA

multiple rule for same realm

how to install and configure ca directory?

How to start using Siteminder API?

Syncing real time data between Active Directory and CA Strong Auth DB (SQL Server)

Flat File Connector xpress: Customer don't see "Manage Connector Server"

What are privileged accounts?

Copy Policy Server to a new machine

Repository for authorization

auth scheme usage

What are the secure SiteMinder HTTP Header to pass to Protected Back-end Server (Jboss)

Looking for documention or examples to setup SiteMinder r12.52 as an Oauth2 client to access Google account

Update Attribute of a Specific User

Accessing Auth/auth repository using webservice

Policy Server (redhat) with mssql

Disable Riskminder

Web Agents misbehave after running for days

Use perl to modify Html Form Template based auth schem

smps.log on newly installed r12.52 SP1 CR05 policy servers indicates that policy server is restarting by itself periodically

CA PIM - Installation prerequisites

DLP vs email ingestion

 

Open Questions

Need to have document of events being sent from CA PAM to syslogs

Convert SMSESSION into LTPA

Data Sync between AD and Strong Auth DB (MS SQL Server)

CleanUp Submitted task failed with unique constraint violation in CA identity Minder12.6.5

How Target URL is set in Login.fcc page?

I have a question,   We have created 3 Campaign Managers  ( Manager 1 ,Manager 2 & Manager 3) apart from AD1\eADMIN who is the real administrator . These 3 Campaign Managers have similar power of AD1\eADMIN but they can’t enjoy the full power of an Admin.

PIM 12.9SP1 Install issues?

SelfService with no questions

 

New Ideas

Allow SAML integration when IDP and SP on the same domain

Header for the Idle Timeout Value left in a CA SSO Session 

Create document that identifies CA PAM events being sent to syslog

Add Fields to TCP/UDP Service Fields

Allow XPSExplorer to delete objects and all of its links

IDentity Portal: Allow to rename first column "Name"

Identity Portal: Sort by column

Identity Portal: Cannot order column in certification screen

Add additional logging for replication cache

ODBC policy store: Agent Configuration Attribute value should allow over 4000 characters.

IM Support for ACF2 R16

<Device Name> or <Remote IP> option

Allow assigning user to more than 10 PM groups

RHL 7 compatiblity

Ability to modify jpg within Credential Provider

Allow PX to update attribute(s) of specific user

Resource or user settings attributes displayed

Pre-define "Group By" attribute in certfication screen

Autologon through access method Mainframe with CA PAM

A UI authenticate administrator based on LDAP or AD group

CA PAM :Ability to assign tags for Device Groups imported from LDAP

 

Upcoming Events

Office Hours for CA Advanced Authentication: A Live Online Chat [AUG 2]

Privileged Access Management: Securing the Cloud [AUG 5]

Simplifying Secure Server Access Control: Why Upgrade to CA Privileged Access Manager Server Control [AUG 16]

Office Hours for CA Privileged Access Management: A Live Online Chat [AUG 18]

Office Hours for CA Single Sign-On: A Live Online Chat [AUG 25]

 

Kudos!

Thanks for answering questions this week...

Sagi_Gabay

Ujwol

wonsa03

Marline_ODea

prira01

liuho03

Enrique_L._Torres

Warren_Barrow

KennyV

Renato_Pioker

genda03
vkaneriya

Karmeng

Sharana

Patrick-Dussault

lutch01

Bill_Peterson

Registration for CA World '16 is now open.

 

The CA World team has done an amazing job building upon the success of last year's event, while enhancing the programming in response to your feedback. CA World is your opportunity to gain valuable, actionable knowledge and insights to help your company get an advantage in the application economy. New this year, attendees will enjoy:

 

  • 100% More Pre-Conference Education
  • CA Agile Academy with related certifications
  • CA Agile Bootcamp
  • CA Product Certification
  • Design Zone
  • Innovation Exchange
  • Development Track


Visit the CA World '16 website to explore the Pre-Conference Education offerings, learn Why You Should Attendand to View the Agenda.

 

 

You need to add new digital services and improve your customer experience without compromising security. Learn how to mitigate data breaches and protect your customers and employees with a proactive approach to cybersecurity.

 

CA Products and Solutions Covered:

  • Authentication
  • IAM-as-a-Service
  • Identity Management and Governance
  • Payment Security
  • Privileged Access Management
  • Single Sign-On

 

Ready to join us November 14-18 in Las Vegas, Nevada?

Register by September 16 and get our Super Saver rate of $1,295. That's a $700 savings off our regular rate!

 

CA World Alumni: Look for an email next week with a code for a special discounted rate of $1,000