Overview

CA Business Service Insight provides basic authentication and password management capabilities.

There are two options to enhance CA Business Service Insight's authentication capabilities.

Using the single sign-on, as described in Single Sign-On (SSO). In this option, the consideration is that the authentication and password management is performed using an external system and when logging into CA Business Service Insight, no authentication is required.
Developing a set of web services that enhances the authentication capabilities (as described in this chapter) following a known interface. Simply configured, these web services are called automatically on every login trial into CA Business Service Insight and on every password change. Such an implementation may, for example, enable restrictions as follows:
- Password cannot be identical to the last 12 passwords.
- Password must be at least six characters long and must contain both alphabetic and non-alphabetic characters.
- After four login failures the user is blocked.

CA Business Service Insight provides the following three services:

Login Gateway
Web service that should be developed. It is called prior to CA Business Service Insight's standard authentication.
Password Change Gateway
Web service that should be developed. It is called upon password change by either the administrator or the user.
Deactivate User Method
Web service used to deactivate a user in CA Business Service Insight. It blocks the user from logging into the system. The administrator can reactivate the user using the standard user interface.