Transcript CA Single Sign-On APJ Office Hours: A Live Chat (Dec 15th)

Document created by Karmeng Employee on Dec 22, 2015Last modified by kristen.palazzolo on Dec 17, 2016
Version 2Show Document
  • View in full screen mode

from Kar Meng Chook to Everyone:
Hi

 

from Kar Meng Chook to Everyone:
Office hours start

 

from Kar Meng Chook to Everyone:
CA SSO office hours start

 

from Kar Meng Chook to Everyone:
Hi @Musangwe, welcome

 

from Kar Meng Chook to Everyone:
the CA SSO office hours started about 8 minutes ago

 

from Kar Meng Chook to Everyone:
you can ask your questions

 

from Kar Meng Chook to Everyone:
thanks

 

from Musangwe (privately):
Hi just trying to get the audio working

 

from Kar Meng Chook to Everyone:
@Musangwe, there is no audio for the session

 

from Kar Meng Chook to Everyone:
is purely webex chat

 

from Musangwe (privately):
ok

 

from Sung Hoon Kim (CA) (privately):
We can cover SiteMinder generic questions, ASA(Application Server Agent), Federation questions

 

from Kar Meng Chook to Everyone:
@Musangwe, the chat has started, you can ask your question

 

from Musangwe (privately):
Ok

 

from Musangwe (privately):
want to understand more about strong authentication and how its configured
from Musangwe to Everyone:
want to understand more about strong authentication and how its configured

 

from Kar Meng Chook to Everyone:
@Musangwe, you mentioned strong authentication, do you mean Arcot integrate with Siteminder?

 

from Kar Meng (CA) (privately):
@Musangwe, I presume you are talking about advance authentication (Arcot)

 

from Kar Meng (CA) (privately):
in general advance authentication refer to

 

from Kar Meng (CA) (privately):
Fraud prevention and advanced authentication*
- Device Identification
- Rules and Model based Risk Engine
- Versatile, Flexible Authentication
Deliver additional services based on authentication
- Digital Signing
- Document security and decryption
- Data Encryption with format preserved

 

from Musangwe to Everyone:
no

 

from Musangwe to Everyone:
i mean there is alot of mention of strong authentication within the siteminder test

 

from Musangwe to Everyone:
so i have never personally setup strong authentication so i just want ted to know how its doen and what it is

 

from Sung Hoon Kim (CA) (privately):
@Musangwe, Probably "Advanced Authentication" would better match the strong authentication?

 

from Sung Hoon Kim (CA) (privately):
such as X.509 Certificate Authentication?

 

from Sung Hoon Kim (CA) (privately):
or IWA(Integrated Windows Authentication)/NTLM

 

from Kar Meng (CA) (privately):
@Musangwe, thanks for clarify

 

from Musangwe to Everyone:
so i guess not particular application but lets say you wanted to setup siteminder and for SSO and FEderated service with RSA manager using strong authentication  then what does the striong authentication part mean?

 

from Sung Hoon Kim (CA) (privately):
@Musangwe, we do have Authentication template for RSA Authentication

 

from Sung Hoon Kim (CA) (privately):
as it mentions RSA manager, it should be RSA Authentication

 

from Kar Meng (CA) (privately):
@Musangwe, you can find general information on what is strong authentication from the pdf

 

from Kar Meng (CA) (privately):
https://one.ca.com/solutions/Master/CA%20Strong%20Authentication.pdf

 

from Kar Meng (CA) (privately):
From Siteminder perspective

 

from Kar Meng (CA) (privately):
you can refer to policy server configuration guide -> Chapter 9: Strong Authentication

 

from Kar Meng (CA) (privately):
@Musangwe, I believe the policy server configuration guide will give you more idea on what strong authentication in Siteminder, let me grab the documentation link and paste it to you, just a minute

 

from Kar Meng (CA) (privately):
@Musangwe, for some reason, CA Support site is unavailable at the moment, therefore I can't provide you the documentation link, let me know if you have the R12.52 policy server configuration guide or else I can send a copy to you after this chat session

 

from Sung Hoon Kim (CA) (privately):
there is no specific authentication scheme called "Strong Authentication"

 

from Kar Meng (CA) to Everyone:
@Musangwe, you can find general information on what is strong authentication from the pdf

 

from Kar Meng (CA) to Everyone:
https://one.ca.com/solutions/Master/CA%20Strong%20Authentication.pdf

 

from Kar Meng (CA) to Everyone:

From Siteminder perspective

 

from Sung Hoon Kim (CA) (privately):
but is referring to authentications that are other than just relying on the username and password

 

from Kar Meng (CA) to Everyone:
you can refer to policy server configuration guide -> Chapter 9: Strong Authentication

 

from Kar Meng (CA) to Everyone:
@Musangwe, I believe the policy server configuration guide will give you more idea on what strong authentication in Siteminder, let me grab the documentation link and paste it to you, just a minute

 

from Sung Hoon Kim (CA) (privately):
and it lists authentications such as Password And/Or Certificate

 

from Sung Hoon Kim (CA) (privately):
SafeWord

 

from Sung Hoon Kim (CA) (privately):
SecurID

 

from Kar Meng (CA) to Everyone:
@Musangwe, for some reason, CA Support site is unavailable at the moment, therefore I can't provide you the documentation link, let me know if you have the R12.52 policy server configuration guide or else I can send a copy to you after this chat session

 

from Sung Hoon Kim (CA) (privately):
IWA

 

from Musangwe to Everyone:
no i dont have the documentation

 

from Sung Hoon Kim (CA) (privately):
So, in our documentation, it does have a section for "Strong Authentication" and starts with Credentials Selector

 

from Kar Meng (CA) to Everyone:
@Musangwe, ok, I will send a copy to you after this chat, the Chapter 9 Strong Authentication provide a use case and mentioned the configuration steps. I believe is useful for your undestanding

 

from Kar Meng (CA) to Everyone:
mind to share what email address that you want me to send to?

 

from Musangwe to Everyone:
ok thanks

 

from Musangwe (privately):
musangwe.kalowa@inpex.com.au

 

from Sung Hoon Kim (CA) (privately):
The Credential Selector itself is not a strong authentication but it gives you the option to choose among the strong authentications such as the Password+Certificate, IWA, SecurID or SafeWord

 

from Sung Hoon Kim (CA) (privately):
hope that clarifies

 

from Kar Meng (CA) to Everyone:
@Musangwe, mind to share what email address i need to send the documentation?

 

from Musangwe to Everyone:
musangwe.kalowa@inpex.com.au

 

from Kar Meng (CA) to Everyone:
@Musangwe, thanks

 

from Kar Meng (CA) to Everyone:
@Musangwe, email sent with policy server configuration guide attached

 

from Kar Meng Chook to Everyone:
@ToAll, we still have 10 minutes before the session end

 

from Kar Meng Chook to Everyone:
@ToAll, if there is any question please raise it as the session will end soon in 7 minutes

 

from Musangwe to Everyone:
thanks am signing out now

 

from Kar Meng Chook to Everyone:
@ToAll, thanks for attend

Attachments

    Outcomes