Dear Experts,
Working on a project to publish API to support web services based authentication & authorization(with the help of Siteminder assertions available)
I would like to understand the best practices should be followed to protect the services. For an example, it should not be open for anyone and should work only based on the Mutual Trust, etc...
Could you share your suggestions?
Thanks,
RaamVeera
RaamVeera,
Good afternoon. The following community post outlines some approaches to securing an API using CA SSO. Integration with CA Single Sign-On (Siteminder)
Sincerely,
Stephen Hughes
Broadcom Support