Overview Guide › Key Capabilities › Entitlement Management

Entitlement Management

When you configure the user store, you choose whether to use the default user store on the CA Enterprise Log Manager for setting up user accounts or reference an external user store where user accounts are already defined. The underlying database is exclusive to CA Enterprise Log Manager and does not use a commercial DBMS.

Supported external user stores include CA SiteMinder and LDAP directories such as Microsoft Active Directory, Sun One, and Novell eDirectory. If you reference an external user store, user account information is automatically loaded in read-only format as shown by the arrow in the following diagram. You define only application-specific details to selected accounts. No data is moved from the internal user store to the referenced external user store.

The numbers on the illustration refer to these steps:

1. The internal user store performs entitlement management by authenticating the credentials supplied by users at login and authorizing users to access different features of the user interface based on the policies associated with the roles assigned to their user accounts. If the user name and password of the user attempting to log in have been loaded by an external user store, the credentials entered must match the loaded credentials.
2. The external user store has no function other than to load its user accounts into the internal user store. These are loaded automatically when the reference to the user store is saved.

Note: See the CA Enterprise Log Manager Implementation Guide for details on configuring basic user access. See the CA Enterprise Log Manager Administration Guide for details on policies supporting predefined roles, creating user accounts, and assigning roles.

More information:

Configuring Basic Users and Access

User Accounts

Policies