from Kar Meng Chook to Everyone:
Hi
from Kar Meng Chook to Everyone:
Office hours start
from Kar Meng Chook to Everyone:
CA SSO office hours start
from Kar Meng Chook to Everyone:
Hi @Musangwe, welcome
from Kar Meng Chook to Everyone:
the CA SSO office hours started about 8 minutes ago
from Kar Meng Chook to Everyone:
you can ask your questions
from Kar Meng Chook to Everyone:
thanks
from Musangwe (privately):
Hi just trying to get the audio working
from Kar Meng Chook to Everyone:
@Musangwe, there is no audio for the session
from Kar Meng Chook to Everyone:
is purely webex chat
from Musangwe (privately):
ok
from Sung Hoon Kim (CA) (privately):
We can cover SiteMinder generic questions, ASA(Application Server Agent), Federation questions
from Kar Meng Chook to Everyone:
@Musangwe, the chat has started, you can ask your question
from Musangwe (privately):
Ok
from Musangwe (privately):
want to understand more about strong authentication and how its configured
from Musangwe to Everyone:
want to understand more about strong authentication and how its configured
from Kar Meng Chook to Everyone:
@Musangwe, you mentioned strong authentication, do you mean Arcot integrate with Siteminder?
from Kar Meng (CA) (privately):
@Musangwe, I presume you are talking about advance authentication (Arcot)
from Kar Meng (CA) (privately):
in general advance authentication refer to
from Kar Meng (CA) (privately):
Fraud prevention and advanced authentication*
- Device Identification
- Rules and Model based Risk Engine
- Versatile, Flexible Authentication
Deliver additional services based on authentication
- Digital Signing
- Document security and decryption
- Data Encryption with format preserved
from Musangwe to Everyone:
no
from Musangwe to Everyone:
i mean there is alot of mention of strong authentication within the siteminder test
from Musangwe to Everyone:
so i have never personally setup strong authentication so i just want ted to know how its doen and what it is
from Sung Hoon Kim (CA) (privately):
@Musangwe, Probably "Advanced Authentication" would better match the strong authentication?
from Sung Hoon Kim (CA) (privately):
such as X.509 Certificate Authentication?
from Sung Hoon Kim (CA) (privately):
or IWA(Integrated Windows Authentication)/NTLM
from Kar Meng (CA) (privately):
@Musangwe, thanks for clarify
from Musangwe to Everyone:
so i guess not particular application but lets say you wanted to setup siteminder and for SSO and FEderated service with RSA manager using strong authentication then what does the striong authentication part mean?
from Sung Hoon Kim (CA) (privately):
@Musangwe, we do have Authentication template for RSA Authentication
from Sung Hoon Kim (CA) (privately):
as it mentions RSA manager, it should be RSA Authentication
from Kar Meng (CA) (privately):
@Musangwe, you can find general information on what is strong authentication from the pdf
from Kar Meng (CA) (privately):
https://one.ca.com/solutions/Master/CA%20Strong%20Authentication.pdf
from Kar Meng (CA) (privately):
From Siteminder perspective
from Kar Meng (CA) (privately):
you can refer to policy server configuration guide -> Chapter 9: Strong Authentication
from Kar Meng (CA) (privately):
@Musangwe, I believe the policy server configuration guide will give you more idea on what strong authentication in Siteminder, let me grab the documentation link and paste it to you, just a minute
from Kar Meng (CA) (privately):
@Musangwe, for some reason, CA Support site is unavailable at the moment, therefore I can't provide you the documentation link, let me know if you have the R12.52 policy server configuration guide or else I can send a copy to you after this chat session
from Sung Hoon Kim (CA) (privately):
there is no specific authentication scheme called "Strong Authentication"
from Kar Meng (CA) to Everyone:
@Musangwe, you can find general information on what is strong authentication from the pdf
from Kar Meng (CA) to Everyone:
https://one.ca.com/solutions/Master/CA%20Strong%20Authentication.pdf
from Kar Meng (CA) to Everyone:
From Siteminder perspective
from Sung Hoon Kim (CA) (privately):
but is referring to authentications that are other than just relying on the username and password
from Kar Meng (CA) to Everyone:
you can refer to policy server configuration guide -> Chapter 9: Strong Authentication
from Kar Meng (CA) to Everyone:
@Musangwe, I believe the policy server configuration guide will give you more idea on what strong authentication in Siteminder, let me grab the documentation link and paste it to you, just a minute
from Sung Hoon Kim (CA) (privately):
and it lists authentications such as Password And/Or Certificate
from Sung Hoon Kim (CA) (privately):
SafeWord
from Sung Hoon Kim (CA) (privately):
SecurID
from Kar Meng (CA) to Everyone:
@Musangwe, for some reason, CA Support site is unavailable at the moment, therefore I can't provide you the documentation link, let me know if you have the R12.52 policy server configuration guide or else I can send a copy to you after this chat session
from Sung Hoon Kim (CA) (privately):
IWA
from Musangwe to Everyone:
no i dont have the documentation
from Sung Hoon Kim (CA) (privately):
So, in our documentation, it does have a section for "Strong Authentication" and starts with Credentials Selector
from Kar Meng (CA) to Everyone:
@Musangwe, ok, I will send a copy to you after this chat, the Chapter 9 Strong Authentication provide a use case and mentioned the configuration steps. I believe is useful for your undestanding
from Kar Meng (CA) to Everyone:
mind to share what email address that you want me to send to?
from Musangwe to Everyone:
ok thanks
from Musangwe (privately):
musangwe.kalowa@inpex.com.au
from Sung Hoon Kim (CA) (privately):
The Credential Selector itself is not a strong authentication but it gives you the option to choose among the strong authentications such as the Password+Certificate, IWA, SecurID or SafeWord
from Sung Hoon Kim (CA) (privately):
hope that clarifies
from Kar Meng (CA) to Everyone:
@Musangwe, mind to share what email address i need to send the documentation?
from Musangwe to Everyone:
musangwe.kalowa@inpex.com.au
from Kar Meng (CA) to Everyone:
@Musangwe, thanks
from Kar Meng (CA) to Everyone:
@Musangwe, email sent with policy server configuration guide attached
from Kar Meng Chook to Everyone:
@ToAll, we still have 10 minutes before the session end
from Kar Meng Chook to Everyone:
@ToAll, if there is any question please raise it as the session will end soon in 7 minutes
from Musangwe to Everyone:
thanks am signing out now
from Kar Meng Chook to Everyone:
@ToAll, thanks for attend