Scenario Guide › Scenario Overview › Enable Certification › Enable Active Directory and Lightweight Directory Access Protocol (LDAP) Authentication › Enable CA IdentityMinder Authentication

Enable CA IdentityMinder Authentication

When you enable CA IdentityMinder authentication, the system authenticates users logging in to the Portal using CA IdentityMinder. For more information about CA IdentityMinder requirements, see the CA IdentityMinder Installation Guide.

Follow these steps:

1. In the Portal, run an import from CA IdentityMinder.

   Note: The authenticated user must exist in CA GovernanceMinder.

2. Under Administration, Settings, System Properties, set these properties as follows:

   sage.security.disable.IMAuthentication

   Defines whether you enablef CA IdentityMinder authorization. Set this value to False to enable CA IdentityMinder authorization.

   Default: True

   sage.security.IMAuthentication.universe

   Defines the universe name where you imported the users. See Step 1.

   Default: True

   sage.default.IMdomain

   Note: Due to legacy issues, this property must remain blank.

   Default: none

   (Optional) sage.security.disable.ADAuthentication

   Defines whether you disable Active Directory authentication. Set this value to False.

   Default: True

3. Restart CA GovernanceMinder.
4. Verify authentication by logging in to the Portal with an imported user.

Note the following use cases around CA IdentityMinder authentication:

• If CA IdentityMinder and CA SiteMinder authentication are both enabled, authentication is accomplished through CA SiteMinder.
• If CA IdentityMinder and Active Directory authentication are both enabled, authentication is accomplished through CA IdentityMinder. If CA IdentityMinder authentication, fails, then authentication moves to Active Directory.