CA Risk Authentication Windows Installation Guide › How to Deploy CA Risk Authentication on a Single System › Perform a Complete Installation

Perform a Complete Installation

To install and configure CA Risk Authentication use a single user account for installation from the Administrators group. Otherwise, the critical steps in the installation, do not complete successfully, though the installation may complete without any errors.

Perform a Complete installation to install all of the components of the CA Risk Authentication package. These components include CA Risk Authentication Server and the scripts that are required for setting up the database.

Follow these steps:

1. Navigate to the directory where the CA Risk Authentication-8.0-Windows-Installer.exe file is located and double-click the file.
2. Click Next.
3. Read the license agreement, select the I accept the terms of the License Agreement option, and click Next.

   The installer now checks if other CA products exist on the system.

   If the installer detects an existing CA product installation (an existing ARCOT_HOME), then:

   • You are not prompted for an installation directory.
   • You are not prompted for the database and encryption setup. The installer uses the existing database and encryption settings. As a result, you can move to Step 6, though the configuration is disabled. You do not have to perform Step 10 as the screens of it do not get displayed.
4. Click Next.
5. Select Complete to Install and click Next.
6. Depending on the type of database you have, select one of the following, and click Next:
   • Microsoft SQL Server

     Note: If you are using a SQL database, verify that the ODBC Driver version you are using is the same as the one mentioned in Preparing for Installation.

   • Oracle Database

     Note: CA Risk Authentication is certified to work with Oracle Real Application Clusters (Oracle RAC). To use Oracle RAC on CA Risk Authentication Installation, select Oracle Database in this step, perform the next step (Step 7), and then perform the steps in Configuring CA Risk Authentication for Oracle RAC (W).

   • MySQL

   Based on your database choice the following screens get displayed:

7. Complete the following information:
   • Microsoft SQL Server:

     ODBC DSN

     Defines the value by which the installer creates the DSN. CA Risk Authentication Server then uses this DSN to connect to the CA Risk Authentication database. The recommended value to enter is arcotdsn.

     Server

     Specifies the host name or IP address of the CA Risk Authentication datastore.

     Default Instance

     Syntax: <server_name>

     Example: demodatabase

     Named Instance

     Syntax: <server_name>\<instance_name>

     Example: demodatabase\instance1

     User Name

     Specifies the database user name. The user must have the create session and DBA rights.

     Note: The User Name for the Primary and Backup DSNs must be different.

     Password

     Specifies the password associated with the User Name. This password is specified by the database administrator.

     Database

     Specifies the name of the MS SQL database instance.

     Port Number

     Specifies the port number at which the database listens to the incoming requests.

     Default Port:1433

   • Oracle Server:

     ODBC DSN

     Specifies the value by which the installer creates the DSN. CA Risk Authentication Server then uses this DSN to connect to the CA Risk Authentication database. The recommended value to enter is arcotdsn.

     User Name

     Specifies the database user name for CA Risk Authentication to access the database. This name is specified by the database administrator.

     The user must have the create session and DBA rights.

     Note: The User Name for the Primary and Backup DSNs must be different.

     Password

     Specifies the password associated with the User Name you specified in the previous field. This password is specified by the database administrator.

     Service ID

     Specifies the Oracle System Identifier (SID) that refers to the instance of the Oracle database running on the server.

     Port Number

     Specifies the port at which the database listens to the incoming requests..

     Default: 1521

     Host Name

     Specifies the host name or IP address of the CA Risk Authentication datastore.

     Syntax: <server_name>

     Example: demodatabase

   • MySQL Server:

     DBC DSN

     Specifies the value by which the installer creates the DSN. CA Risk Authentication Server then uses this DSN to connect to the CA Risk Authentication database. The recommended value to enter is arcotdsn.

     Server

     Specifies the host name or IP address of the CA Risk Authentication datastore.

     Default Instance

     Syntax: <server_name>

     Example: demodatabase

     Named Instance

     Syntax: <server_name>\<instance_name>

     Example: demodatabase\instance1

     User Name

     Specifies the database user name for CA Risk Authentication to access the database. This name is specified by the database administrator.

     The user must have the create session and DBA rights.

     Note: The User Name for the Primary and Backup DSNs must be different.

     Password

     Specifies the password associated with the User Name you specified in the previous field. This password is specified by the database administrator

     Database

     Specifies the name of the MySQL database instance.

     Port Number

     Specifies the port at which the database listens to the incoming requests.

     Default: 3306

8. After you specify the database details, test if you can successfully connect to the database by clicking the Test Data Source button and verify the result of the same in the field below the button.
9. Click Next.
10. Select the encryption mode and enter the information that is used for encryption.

    Master Key

    Specifies the password for the Master Key which is used to encrypt the data stored in the database.

    Default Value: MasterKey

    Note: If you want to change the value of Master Key after the installation, then regenerate securestore.enc with a new Master Key value. See Changing Hardware Security Module Information After the Installation for more information.

    Configure HSM

    (Optional) Specifies if you will use a Hardware Security Module (HSM) to encrypt the sensitive data. If you do not select this option, then, by default, the data is encrypted by using the Software Mode.

    PIN

    Identifies the password to connect to the HSM.

    Choose Hardware Module

    Specifies one of the following HSMs:

    • Luna HSM
    • nCipher netHSM

    HSM Parameters

    Set the following HSM information:

    Shared Library: The absolute path to the PKCS#11 shared library corresponding to the HSM.

    For Luna (cryptoki.dll) and for nCipher netHSM (cknfast.dll), specify the absolute path and name of the file.

    Storage Slot Number: The HSM slot where the 3DES keys used for encrypting the data are available.

    • For Luna, the default value is 0.
    • For nCipher netHSM, the default value is 1.

    Note: The HSM parameter values are recorded in arcotcommon.ini, which is available in <install_location>\Arcot Systems\conf\. To change these values after installation, edit this file, as discussed in Configuration Files and Options.

    Click Next.

11. Review the information in the Pre-Installation Summary screen, and click Next.
12. Click Install to begin the installation process.

    The Microsoft Visual C++ 2010 x86 Redistributable Setup screen appears. This screen appears only if the current system where you are installing CA Risk Authentication does not have Microsoft Visual C++ 2010 x86.

13. On the Microsoft Visual C++ 2010 x86 Redistributable Setup screen, perform the following steps:
    1. Select I have read and accept the license terms, and click Install.

       The Installation Progress screen appears. This may take a few seconds. After some time the Installation Is Complete screen appears.

    2. Click Finish to close the Microsoft Visual C++ 2010 x86 Redistributable Setup dialog box and continue with the installation.

    The Installing CA Risk Authentication screen appears.

    After some time the Installation Complete screen appears.

14. Click Done to complete the CA Risk Authentication installation.

Note: After the installation is completed, perform the post-installation tasks that are discussed in Performing Post-Installation Tasks.

Installation Logs

After installation, you can access the installation log file (CA_CA Risk Authentication_Install_<timestamp>.log) in the <install_location> directory. For example, if you had specified the C:\Program Files directory as the installation directory, then the installation log file is created in the C:\Program Files directory.

If the installation fails for some reason, then error messages are recorded in this log file.