DX Unified Infrastructure Management

Hi Team,

I am looking forward for the user management capabilities of CA UIM 8.4. Please let me know to which all below capabilities CA UIM is feasible with.

1. Can we set user naming convention in CA UIM? Ex. Each account should be of minimum 8 characters and username of 6 characters(also define the characters that can be used for creating user/account)
2. Can we configure user password, password age and password complexity requirements (combination of alphanumeric & characters)?
3. Prompt prior notice to user before password expiration?
4. Enforce password history so that user cannot re-use last 5 passwords.
5. Configure account lockout after certain number of login attempts?
6. The user shall be forced to change the password on first logon?
7. How can we check Active and Dormant Users of CA UIM?
8. Configure alert or warning banner at the login page
9. Can we capture audit log from CA UIM. What will be the level audit trails (Ex. User ID, Computer name, Source IP, Date & Time of event, Event type etc.)? Where we can get the audit trail in UIM?

I will really appreciate to receive response on this.

Thanks & Regards,

Sumeet Hooda

Dear Sumeet, 

with the default user managment within the UMP (which is based on liferay) or UIM via admin console / Infrastructure Manager, you do not have such a granular user administration as for example with CA Single Signon (formerly Siteminder).

1. Can we set user naming convention in CA UIM? Ex. Each account should be of minimum 8 characters and username of 6 characters(also define the characters that can be used for creating user/account)
2. Can we configure user password, password age and password complexity requirements (combination of alphanumeric & characters)?
3. Prompt prior notice to user before password expiration?
4. Enforce password history so that user cannot re-use last 5 passwords.
5. Configure account lockout after certain number of login attempts?
6. The user shall be forced to change the password on first logon?

Administering CA UIM - CA Unified Infrastructure Management - 8.4 - CA Technologies Documentation 

This is the part of the documentation that deals with the default user administration. Only authorised users can create LoginIDs and set their password. It is possible to allow these users to change their password via a specific portlet in the UMP, but this is not available by default. You cannot set the parameters you are looking for in the software at this moment.

You can have this kind of security options by for example using LDAP user integration or the SingleSignon integration for the UMP and then this would be handled by that application and not within our software.

7. How can we check Active and Dormant Users of CA UIM

You can for example check if a specific profile has logged on to the UMP via the control panel in the portal.  What do you mean by dormant users?  As such, users created within the software do not expire. 

8. Configure alert or warning banner at the login page?

You can customize the login page, but I am not sure what you mean by warning banner. Do you want to have a specific page being displayed once a user logged on? That is entirely possible.

9. Can we capture audit log from CA UIM. What will be the level audit trails (Ex. User ID, Computer name, Source IP, Date & Time of event, Event type etc.)? Where we can get the audit trail in UIM?

We do have the audit probe that would provide some of this information, please find the documentation here:

audit - CA Unified Infrastructure Management Probes - CA Technologies Documentation 

Lastly, judging from your questions you have quite a few questions surrounding the security of the software. It would probably be a good idea to get in touch with CA Services for further discussions. 

Kind Regards,

Martin Fink

CA Tech Support