What you may have missed in the CA Security Communities! December 2017

Document created by Chris_Hackett Employee on Jan 19, 2018
Version 1Show Document
  • View in full screen mode

 

Dear CA Securities Community Member,

 

With so much going on in the Security Communities, I have consolidated recent activities in case you missed anything.

 

 

UPCOMING EVENTS

 

Product Roadmaps & Feedback Sessions - CA Technologies 

 

CA PAM Roadmap Session – February 13th 11:00AM ET 

CA PAM Roadmap Session – February 13th 5:00PM ET 

 

CA Single Sign-On Roadmap Session – February 13th 1:00PM ET 

CA Single Sign-On Roadmap Session – February 13th 9:00PM ET 

CA Single Sign-On Roadmap Session – February 14th 9:00AM ET 

 

CA Identity Suite Roadmap Session – February 21st 10:00AM ET 

 

 

 

TIPS AND HELPFUL INFORMATION

 

CA Security

   CA_Dir_SessionStore_Optimize_V3.docx 

   New option to change the definition of 'reviewed' in the iConsole Standard Search 

   The European General Data Protection Regulation (GDPR) 

   GA Announcement of CA Directory r12.6 Service Pack 4 

   Example for defining a load share group in CA Directory 

   CA-Directory-Getting to know Directory 

   Meltdown and Spectre vulnerabilities 

   Some Helpful Queries for User Store and Provisioning Store Search 

   DEV-OPS: CA Identity Manager & CA SSO - CLI Silent Response Scripts on Centos7 

   Identity Suite vApp - IP & IG Deployment Model with external database (MS-SQL) 

   IP & IG vApp External IAMCS Configuration 

   CA Directory Load Balancing 

   CA PAM: compliance of the software version on client devices      

   Automate a clean-up process for Wildfly JMS Queue 

   Final CA Directory validation build is now available! 

   What hints or tips do you like to share? 

   CA Education in the Modern Software Factory 

   What is the best way to get certified in PAM? 

   CA PAM:  Application Access privileges 

   Meltdown and Spectre vulnerabilities - CA Directory update 

   Meltdown and Spectre Vulnerabilities - Secure Cloud and Identity Service Update 

   Update Vmware Image's Dynamic IP Address to Static IP (outside of the image) 

 

CA Identity Service (IDaaS)

   Announcing the Wednesday December 27th 2017 CA Identity Service Update 

   Meltdown/Spectre Vulnerability update 

 

CA Single Sign-On

   Tech Tip : CA Single Sign-On :: Policy Server::An agent change key command was received that contained a set of null keys 

   A Primer on CA SSO REST APIs for Migrations and Upgrades 

   Tech Tip : CA Single Sign-On ::What information is stored in the SMSESSION Cookie 

   Tech Tip : Howto enable Tracing in Access Gateway (fka: Secure Proxy Server) 

   Tech Tip : CA Single Sign-On :CA Access Gateway:Auth/AZ Web Service with Certificate Authentication 

   The Pros and Cons of Agent Identities vs DefaultAgentName 

   Tech Tip : CA Single Sign-On :: Policy Server::How to display invalid login error messages on the login page 

   Enabling an SSL connection to a CA Directory policy store 

   Configuring SSO to JasperSoft Report Server using CA SSO 

   Workaround to register an admin UI with multiple policy servers 

   Tech Tip : CA Single Sign-On : BadURLChars ACO parameter does not block /%2F from URL 

   CA SSO & NGINX 

   PROACTIVE NOTIFICATION for CVE-2017-5754, CVE-2017-5753, and CVE-2017-5715 - industry-wide multiple microarchitectural (hardware) implementation issues affecting many modern microprocessors - MELTDOWN and SPECTRE vulnerabilities 

   Tech Tip : CA Single Sign On : AdminUI Login Flow 

   Tech Tip : CA Single Sign-On : AgentName ACO Parameter Limit 

   Tech Tip : CA Single Sign-On : Web Agent logs are not rotating and stop logging 

   Tech Tip : CA Single Sign-On : Starting Web Agent with OHS, this one shuts down some seconds after having started successfully 

   Tech Tip : CA Single Sign-On : Policy Server reports "Bad search filter" error when the operator TRANSLATE is in use in a Response 

   Tech Tip : CA Single Sign-On : How to implement ODBC LoadBalancing for User Store 

   Tech Tip : CA Single Sign-On : Configuring a Cookie Provider, once user has logged in first domain, it's asked to enter credentials for the second domain again. 

   Tech Tip : CA Single Sign-On : Policy Server fails to return Custom Headers when Custom Header is recalculated every 30 seconds. 

   Tech Tip : CA Single Sign-On : What is the recommended action () to use in the Authentication REST Interface for the REST base authentication? 

   Tech Tip : CA Single Sign-On : Login with Windows Authentication, only a specific user has to provide credentials. 

   Tech Tip : CA Single Sign-On : How to transform the value of an octet attribute from Active Directory ? 

   Tech Tip : CA Single Sign-On : When doing Apache graceful restart, Web Agent reports error "PID Cache error" 

   Tech Tip : CA Single Sign-On : Policy Server fails to return Custom Headers when Custom Header is recalculated every 30 seconds. 

   Tech Tip : CA Single Sign-On : Which separators does the Policy Server uses when it gets the user's group list? 

   Tech Tip : CA Single Sign-On : Arabic characters doesn't show up on page protected by Web Agent 

    Tech Tip : CA Single Sign-On : IDM with CA Single Sign-On reports the error: "Corrupted buffer returned from server" 

   Using CA Access Gateway as a Web Agent Replacement 

   

CA Identity Management

   Five Goals for Your Identity and Access Management Operations Software Factory: Part I 

   Tech Tip - CA Identity Portal: Checkbox or Radio Buttons? 

   Tech Tip - CA Identity Portal: User data does not appear on search results 

   Tech Tip - CA Identity Manager: Policies Xpress are not being processed 

   CA Identity Suite 14.x Upgrade Page 

   Jasperserver 6.3 Fresh installation and IM Integration.docx 

   Creating a Unix Account with specific UID 

   30dec2017-rolestasks-V12.zip 

   Nov 25, 2017 certificate expiration 

   Deploy a vApp Sandbox with Production TDM Data 

   Using MS Excel to validate your feed 

   IMAG ETL Repository 

   Meltdown and Spectre vulnerabilities - Identity Suite Virtual Appliance update 

   Meltdown and Spectre vulnerabilities - Identity Manager, Governance, and Portal update 

   

CA Privileged Access Management

   Tech Tip - CA Privileged Access Manager: Transparent Login fails with Java application 

   Tech Tip - CA Privileged Access Manager: CAPM 2.8.3 or 2.8.4 upgrade can cause problems with Thales HSM integration 

   Tech Tip - CA Privileged Access Manager: Root account fails to update other accounts password if not in sudoers file 

   Tech tip - CA Privileged Access Manager: Troubleshooting for "Group names not specified" during account discovery 

   Tech Tip - CA Privileged Access Manager: Access to NetApp devices 

   Tech Tip:  Identifying the various PAM hardware appliances. 

   Tech Tip:  Configuring PAM to Manage Passwords for Scheduled Tasks on a Windows Server. 

   Integrate PAMSC14 with Splunk 

   PAM Proactive Notification Critical Alert 

   PIM Proactive Notification Critical Alert 

   PAM SC Proactive Notification Critical Alert 

   Tech Tip: Receiving error when trying to install PIM 12.81, ERROR: Could not find specific kernel module  

   CA Privileged Access Manager - Security Notice 

   Tech Tip:  Unable to apply a license without AWS 

   Tech Tip:  Scanning Ports Used by PAM Clustering 

   Top Ten Knowledge Base Articles published for CA Privileged Access Manager (since 1st April 2017 to 4th October 2017) 

   Tech Tip:  Something to check if RSA Authentication is sometimes slow 

   PAM 3.0.1 Adding Cert killed VM NIC 

   Tech Tip:  RSA not working 

   CA PIM + PAMSC with Meltdown Linux Kernel Questions 

   Tech Tip - CA PAM - Windows Proxy error 2221_NERR_UserNotFound 

   Privileged Identity Manager (PIM) and Privileged Access Manager Server Control (PAMSC) with Meltdown Linux Kernel Updates   

   Upgrade process from 2.8.x to 3.0.x for CA PAM 

   

CA Advanced Authentication

   PROACTIVE NOTIFICATION for CVE-2017-5754, CVE-2017-5753, and CVE-2017-5715 - industry-wide multiple microarchitectural (hardware) implementation issues affecting many modern microprocessors - MELTDOWN and SPECTRE vulnerabilities 

   

 

Regards,

Chris_Hackett

Community Manager, Agile Management and Security Communities

 

Attachments

    Outcomes