Configuration Guide › SiteMinder Integration › SiteMinder Operations › Collect User Credentials Using a Custom Authentication Scheme

Collect User Credentials Using a Custom Authentication Scheme

SiteMinder uses an authentication scheme to collect user credentials and determine a user’s identity at login time. Once a user is identified, Identity Manager generates a personalized User Console based on the user’s privileges.

You can implement any SiteMinder authentication scheme to protect an Identity Manager Environment.

For example, you can implement an HTML Forms Authentication Scheme, which collects credentials in an HTML form. Using an HTML form lets you create a login page that may include branding elements, such as a company logo, and links to the self-registration and forgotten password pages.

Note: For information about authentication schemes, see the CA SiteMinder Policy Server Configuration Guide.

To collect user credentials using a custom authentication scheme

1. Log into one of the following interfaces:
   • For CA SiteMinder Web Access Manager r12 or higher, log in to the Administrative UI
   • For CA eTrust SiteMinder 6.0 SP5, log in to the Policy Server User Interface

   Note: For information about using these interfaces, see the documentation for the version of SiteMinder that you are using.

2. Create an authentication scheme as described in the CA SiteMinder Policy Server Configuration Guide.
3. Modify the realm that protects the appropriate Identity Manager Environment to use the authentication scheme you created in Step 1.

   The realm name has the following format:

   Identity Manager-environment_ims_realm

   Note: If you configured support for public tasks, you see an additional realm, Identity Manager-environment_pub_realm. This realm uses an anonymous authentication scheme to enable unknown users to use the self-registration and forgotten password features without supplying credentials. Do not modify the authentication schemes for these realms.