What you may have missed in the CA Security Communities! October 2017

Document created by Chris_Hackett Employee on Nov 14, 2017
Version 1Show Document
  • View in full screen mode

 

Dear CA Securities Community Member,

 

With so much going on in the Security Communities, I have consolidated recent activities in case you missed anything.

 

 

UPCOMING EVENTS

 

Adaptive Thinking: How Capital One Combats Fraud 

CA Single Sign-On Community Webcast - CA SSO and NGINX Demonstration – November 28th 12:00PM ET 

CA PAM Community Webcast - Recent Developments in CA PIM – November 29th 2:00PM ET 

CA PAM Roadmap Session – December 5th 11:00AM ET 

CA PAM Roadmap Session – December 5th 5:00PM ET 

CA Single Sign-On Roadmap Session – December 12th 1:00PM ET 

CA Single Sign-On Roadmap Session – December 12th 9:00PM ET 

CA Identity Suite Roadmap Session – December 20th 10:00AM ET 

 

 

TIPS AND HELPFUL INFORMATION

 

CA Security

   Tech Tip - CA Directory - Vulnerability found on rpc.statd 

   Security at CA World: Services and Education Insights 

   Multiple Products - Release & Support Lyfecyle Dates, including EOS - End Of Service 

   New option to change the definition of 'reviewed' in the iConsole Standard Search 

   Product Feedback 2017: Survey Launched! 

   CA Directory Validation project now open! 

   NEW CA Directory validation build available 

   New CA Highlight Blog Post 

   XML Canonical Sort 

   SPS /PROXYUI cannot login, 500 error  (with smpolicy-secure.xml) 

   

CA Identity Service (IDaaS)

   Announcing the Thursday November 9th 2017 CA Identity Service Update 

   Announcing the Friday Oct 13th 2017 CA Identity Service Update 

   Announcing the latest update to CA Identity Service (2.3.2) 

   Announcing the latest update to CA Identity Service (2.3.1) 

   

CA Single Sign-On

   Tech Tip : CA Single Sign-On :: Administrative UI: Switch CA SSO Administrative UI HTTP/HTTPS connection 

   Tech Tip : Howto enable Tracing in Access Gateway (fka: Secure Proxy Server) 

   Tech Tip: How to change log4j format to show threadid (for Ag/SPS httpclient.log) 

   SSO Policy Server r12.52/r12.6/r12.7 Defect Fixes History 

   Create the NSS Certificate Database and configure SSL connection - SSO (Siteminder) 

   Helping to debug SSO Policy Server java processes - redirecting stdout/stderr to timestamped file. 

   CA SSO PM Team To Snapshot Idea Vote Totals on October 27 

   Reminder - CA SSO 12.8 Validation (Beta) Build #1 is Available Now 

   CA SSO Federation with JWT Token 

   CA SSO OpenID Connect Provider - with Apache OpenID Client 

   SSO Client Federation Partnership to SSO OpenIDC Provider  

   Custom Login Page 

   Kerberos Troubleshooting 

   CA Dynamic Assertion Generator Plug-In 

   CA Filter and Format Groups-Assertion Generator Plug-in.docx 

   Why is Identity and Access Management so complex? 

   Please Participate in our Product Survey 

   Tech Tip: Access Gateway (formerly Secure Proxy Server) - Links to useful articles 

   Tech Tip : CA Single Sign-On : Can access existing session from different browsers after Session Assurance setup 

   SAML Assertion plugin – Moving CA SSO protected applications to the Cloud 

   Tech Tip - CA Single Sign-On:Federation: How to Integrate Amazon Web Services (Service Provider) with Siteminder (Identity Provider) [1] 

   Tech Tip : CA Single Sign-On : WSS Agent (formerly SOA Agent) on Windows doesn't have the TxMinder Service installed : "TxMinder XML SDK Service not installed". 

   Siteminder Policy Reader 

   Running the Java Custom Authentication Scheme 

   Critical Notification for SSO customers using Identity Manager 

   How the SiteMinder Webagent encode & decode URLs 

   TECH TIP: How to send a RelayState parameter on a SAML federation from Access Gateway? 

   Tech Tip - CA Single Sign-On : Error removing Fed Partnership using the AdminUI 

   AD Password Services problems after upgrading to R12.52 SP01 CR05 and CR06 

   CA Single Sign On Upgrade from 12.6.1 to 12.7 

   Tech Tip : CA Single Sign-On : On which version will the 12.52SP1 Agent for JBoss be certified for JBoss 7 ? 

   Tech Tip : CA Single Sign-On : FSSUI returns error 55 

   Tech Tip : CA Single Sign-On : Policy Server backend CA Directory Session Store over SSL reports error : "SSL3 alert read: fatal: bad certificate" 

   Tech Tip : CA Single Sign-On : OneView Monitor write tons of logs lines permanently in Tomcat stdout logs 

   Tech Tip : CA Single Sign-On : XFrameOptions isn't honoured in Secure Cloud 1.55 

   Docker Adoption Survey 

 

CA Identity Management

   Identities Under Attack?  

   TEWS Sample  

   Certification Expiration Update 

   IDM 14.x/Jboss 6.x - Hypersonic Messaging Database 

   Critical Notification for Identity Manager customers: 

   For customers using Identity Manager - Steps to address expired 6 Oct 2017 Provisioning certificates in IdentityMinder 

   Change settings in VM IMAG_VApp_17.145 

   Assign AD Group membership via Policy Xpress - changes for IM R14.1 

   Certification Testing at CA World '17: Proven Professional, CA Identity Suite 14.x Implementation 

   Active Directory Authentication Internal Error 

   IDM 14.1 - Jboss 6.x HornetQ migration to IBM MQ 

   IdentityManager- Steps to resolve OOTB Provisioning Certificates that expired on 6th Oct,2017 

   Powershell and auto-backup of IME Environment 

   CA Identity manager AD end point to change from One AD to another AD(different forest than the first AD) 

   CA20171114-01: Security Notice for CA Identity Governance 

   Update JBOSS/Wildfly Log4j without restart for Identity Suite (and vApp) 

   

CA Privileged Access Management

   Tech Tip - CA Privileged Access Manager: Issue with SSH access to Solaris via CA PAM 2.8.2  

   Workaround: Error threat analytics integration with CA PAM 

   Tech Tip - CA Privileged Access Manager: Transparent Login fails with Java application 

   Tech Tip - CA Privileged Access Manager: Customize PuTTY's Window Title 

   Tech Tip - CA Privileged Access Manager: MindTerm session terminates unexpectedly 

   Tech Tip - CA Privileged Access Manager: @PasswordViewRequest.getStartDate@ and @PasswordViewRequest.getEndDate@ always displayed in UTC time 

   Tech Tip - CA Privileged Access Manager: "Device CSV Import Error" 

   Tech Tip - CA Privileged Identity Manager - sesudo: Parameter is too long. 

   Tech-Tip: Not able to connect to PAM GUI after upgrade to 3.0.1 

   PAM not able to verify or change the password of Linux account 

   Tech Tip - CA Privileged Access Manager: Socket Filter Agent Monitoring 

   Tech Tip - CA Privileged Access Manager: Root account fails to update other accounts password if not in sudoers file 

   Tech Tip:  Downloading the PAM OVA from the Support Portal 

   Tech Tip - CA Privileged Access Manager: Creating new devices with device group membership using the Rest API 

   General Availability Announcement for CA Privileged Access Manager 3.0.2 

   Tech Tip:  RSA not working 

   CA Privileged Access Manager Product Survey is now available 

   Certification Testing at CA World '17: Proven Professional, CA Privileged Identity Manager 12.x Implementation 

   Certification Testing at CA World '17: Proven Professional, CA Privileged Access Manager 2.x Implementation 

   #CyberSecurityChat Join In 

   PAM 3.0.1 PortScan showing no "Result" 

   PAM 3.0.1 Adding Cert killed VM NIC 

   Tech Tip:  Problem Uploading Remedy jar files to PAM 3.0.1 

   Latest Knowledge Base Articles published for CA Privileged Access Manager (4-October-2017) 

   Top Ten Knowledge Base Articles published for CA Privileged Identity Manager (since 1st April 2017 to 4th October 2017) 

   Top Ten Knowledge Base Articles published for CA Privileged Access Manager (since 1st April 2017 to 4th October 2017) 

   Latest Knowledge Base Articles published for CA Privileged Identity Manager (04-October-2017) 

   

CA Advanced Authentication

   Migrate Advanced Authentication Application Server from Windows to Linux 

   

CA Payment Security

   Adaptive Thinking: How Capital One Combats Fraud 

   

Regards,

Chris_Hackett

Community Manager, Agile Management and Security Communities

 

Attachments

    Outcomes