CA Strong Authentication Administration Guide › Getting Started › Next Steps: Quick Administration › Complex Deployment

Complex Deployment

Use this implementation for larger enterprises where you implement CA AuthMinder in a complex and high availability environment. This deployment provides strong authentication for the large user base, and administrators who manage the system. In these deployments, CA AuthMinder components are installed on different servers. This deployment ensures security, performance, high availability, and/or to enable multiple applications to use the strong-authentication capability.

For information on this type of deployments, see Planning the Deployment in the CA Strong Authentication Installation Guide.

The following table summarizes the typical characteristics of this deployment type:

The quick overview of the steps to set up and start managing strong authentication for your users is:

1. Verify that CA AuthMinder is installed and configured properly and that you have deployed the WAR files for the Administration Console and User Data Service.

   Note: See the CA Strong Authentication Installation Guide for more information about installing CA AuthMinder, deploying the WAR files, and performing other post-installation tasks.

2. Log in to the Administration Console as MA (see Accessing the Administration Console) and follow the steps in the Bootstrap wizard to initialize the system.

   For more information, see Bootstrapping the System in the CA Strong Authentication Installation Guide.

3. Configure the Administration Console settings, which include UDS settings, global organization settings, Administration Console cache settings, and the basic username-password authentication for logging in to the Console.

   For more information, see Configuring Administration Console Settings.

4. Set up CA AuthMinder Server instances on different systems.

   For more information, see Setting Up Server Instances.

5. Configure the protocols that Administration Console, SDKs, and Web Services use to communicate to CA AuthMinder Server.

   For more information, see Configuring Communication Protocols.

6. Plan and create organizations. The organization architecture is flat and each organization that you create can map to a business unit in your enterprise.

   For more information, see Creating and Activating Organizations.

7. Plan and create the administrators (see Creating Administrators) and custom roles (see Working with Custom Roles), if required.
8. Create appropriate Credential Profiles and Authentication Policies, and assign these configurations.

   See Managing Global CA AuthMinder Configurations for more information.

9. Enroll users with CA AuthMinder.

   See Creating Users for more information.

10. If required, configure the SAML token settings, RADIUS clients, and ASSP settings.

    See Updating Organization Information for more information.

11. If required, configure SSL-based communication between CA AuthMinder Server and its clients.

    See Creating Trust Stores for more information.

12. If required, configure the miscellaneous settings (such as token validity and challenge validity settings.)

    See Configuring Miscellaneous Settings for more information.

13. If you are planning to extend the CA AuthMinder functionality by the use of plug-ins, then register and configure these.

    Note: See Registering and Updating Plug-Ins for more information about how to register a plug-in, Configuring Plug-Ins on how to configure a plug-in.

You can now manage the system (Managing CA AuthMinder Server Instances), administrators (Managing Administrators), and users (Managing Users and Their Credentials).