CA Automation Point provides a security mechanism for the Notification Website that maximizes platform independence, while at the same time provide the widest user base with maximum functionality. It incorporates these security principles:
The CA Automation Point server and the web server are expected to run behind the corporate firewall within the company intranet on the company property. Your company controls any direct access to the physical site, the computers, and the software on them.
The data transmitted to and from the Notification Website is encrypted and protected. The webmasters at your site control the means for establishing secure data transmission mechanisms, such as SSL (Secure Sockets Layer), between the web server and the client browsers that are connected. The data transmitted between the web server and the AP server is encrypted using proprietary algorithms.
The Notification Website is protected from illicit users. The identity of a user is verified and confirmed before he or she is allowed to use the Notification Website.
The Notification Website prevents authenticated users from using the website in unauthorized ways. User privileges and permissions are checked before a legitimate user is allowed to access particular information or to use particular methods.
Note: LDAP security can be used for either or both authentication and authorization. For more information, see the Administrator Guide.
|
Copyright © 2011 CA.
All rights reserved.
|
|