Bootstrapping is a wizard-driven process that walks you through these setup tasks. Other administrative links are enabled only after you perform these tasks. Before you start using Administration Console to manage CA Risk Authentication, perform the following mandatory steps to initialize the system:
When you deploy Administration Console, an organization is created automatically. This organization is referred to as Default Organization (DEFAULTORG). As a single-organization system, the Default Organization itself can be used without creating any organizations.
When you first log in to Administration Console as the Master Administrator (MA), the Summary screen for the Bootstrap wizard screen appears.
Follow these steps:
The Change Password screen appears.
CA Risk Authentication enables you to use hardware- or software-based encryption of your sensitive data. (You can enable hardware-based encryption by using arcotcommon.ini file, while software-based encryption is enabled by default.) Irrespective of hardware or software encryption, Global Key Label is used for encrypting user and organization data.
If you are using hardware encryption, then this label serves only as a reference (or pointer) to the actual 3DES key stored in the HSM device, and therefore must match the HSM key label. However in case of software-based encryption, this label acts as the key.
Important! After you complete the bootstrapping process, you cannot update this key label.
Specifies the descriptive name of the organization. This name appears on all other Administration Console pages and reports.
Specifies one of the mechanism that is used to authenticate administrators that belong to the Default Organization. Administration Console supports the following three types of authentication methods for the administrators:
LDAP User Password: If you select this optionf then the administrators are authenticated by using their credentials that are stored in the directory service.
Note: If this mechanism is used for authenticating administrators, then deploy UDS, as discussed in the section, Deploy User Data Service (UDS).
Basic: If you select this option, then the built-in authentication method that is provided by Administration Console is used for authenticating the administrators.
CA Strong Authentication Password: If you select the CA Strong Authentication Password option here, then the credentials are issued and authenticated by the AuthMinder Server. For this, the CA AuthMinder Server must be installed.
Note: For information about installing and configuring CA Strong Authentication, see the CA Strong Authentication Installation and Deployment Guide.
Specifies the default Global Key. Deselect this option if you want to override the Global Key Label you specified in the preceding step and specify a new label for encryption.
Specifies the new key label, if you deselected the Use Global Key option.
Identifies whether the encryption key is stored in the database (Software) or the HSM (Hardware).
|
Copyright © 2014 CA Technologies.
All rights reserved.
|
|