Message Image

Skip main navigation (Press Enter).

Symantec Access Management

Back to discussions

Expand all | Collapse all

Cross Organization Account Types

Jump to Best Answer

Ntokozo MkhonzaJan 11, 2018 05:30 AM

Hi, I would like to know if it is possible to configure an account type to be used across multiple ...

Sarvesh KumarJan 11, 2018 08:45 AMBest Answer

Normally It is not possible if you are using a ruleset that includes the rule related to User and Device ...

1. Cross Organization Account Types

0 Recommend
Ntokozo Mkhonza
Posted Jan 11, 2018 05:30 AM

Reply Reply Privately
Hi,

I would like to know if it is possible to configure an account type to be used across multiple organizations with CA
Advanced Risk Authentication.

Example:
ORG_A: joe.doe@ca.com uses channel A
ORG_B: joe.doe@ca.com uses channel B

In terms of the OOTB rules, we do not want Joe to be re-authenticated/to be seen as a new user or undergo device-association if this has taken place on either of the organizations.

Thanks
2. Re: Cross Organization Account Types
Best Answer

2 Recommend
Broadcom Employee

Sarvesh Kumar
Posted Jan 11, 2018 08:45 AM

Reply Reply Privately
Normally It is not possible if you are using a ruleset that includes the rule related to User and Device association, MFP matching.
Having said that you can achieve this use case by creating a new rule like "check authentication status" using OOTB rule builder can can pass the user authentication status as additional input to risk evaluation. Configure the Risk Advice/Risk Score such that it will return "Allow" advice if user is already authenticated otherwise return the "increase auth. advice".

Copyright 2023. All rights reserved.

Powered by Higher Logic