Previous Topic: How to Enforce Strong AuthenticationNext Topic: Identify Interactive Restricted Users


Install Prerequisite Software

To enforce strong authentication, you set up an CA AuthMinder server, the CA Adapter, and the CA ArcotID OTP desktop or mobile client.

Note: For more information about installing and configuring the required software, see the following documents in the CA AuthMinder bookshelf on support.ca.com:

Install third-party software.

Follow these steps:

  1. Install JDBC Drivers 4.0 for SQL Server (JARs).
  2. Install Oracle JDK.
  3. Install Apache Tomcat Application Server.

Install the CA AuthMinder server.

Follow these steps:

  1. Configure CA AuthMinder to use the same user directory that the CA ControlMinder endpoint is configured with.
  2. Verify that MS SQL Server is configured to use the "SQL Server Authentication" authentication method.
  3. Create a new database and configure the database size to grow automatically. The recommended database name is "arcotdb".
  4. Open SQL Server Management Studio and create a database user:
    1. Browse to the SQL server where you created your database. Expand the Security folder, and then click Logins.
    2. Right-click Logins, and click New Login.
    3. Enter the Login name. The recommended name is "arcotuser".
    4. Specify SQL Server Authentication.
    5. Specify Password and Confirm Password for the login.
    6. Verify that you specify other password settings on this page according your organization’s password policies.
    7. Set the default database to your SQL database "arcotdb".
    8. Set the User Mapping to "arcotuser" (in the Users Mapped to this Login section).
    9. Set the User Mapping (SQL 2005) for the default database to "db_owner" (in the Database Role Membership For arcotdb section).

    You installed CA AuthMinder server .

Install and configure CA Adapter and "Custom Application":

Follow these steps:

  1. Install CA Adapter.

    The CA Adapter installation also includes the "Custom Application" web application.

  2. Access the CA Adapter configuration wizard and create a SAML integration profile with "ArcotID OTP on mobile" as the primary authentication method.
  3. Run the Custom Application by accessing the following URL.
    https://host_name:port/customapp/
    
  4. Click "Setup" in the left panel of the Custom Application.
  5. Fill in the fields on the Custom Application setup screen.
    1. Define protocol, host, and port of the application server hosting the CA AuthMinder Authentication Flow Manager.
    2. Define the "Flow Type" by selecting the integration profile "ArcotID OTP on mobile".
    3. Click Submit.

Your CA AuthMinder installation is ready for integration with CA ControlMinder.