Configuration Guide › CA Identity Manager Protection › Management Console Security › Use SiteMinder to Secure the Management Console

Use SiteMinder to Secure the Management Console

To protect the Management Console initially, you can create a SiteMinder policy.

A SiteMinder policy identifies a resource that you want to protect, such as the Management Console, and grants a set of users access to that resource.

To create a SiteMinder Policy to protect the Management Console

1. Log into one of the following interfaces as an administrator with Domain privileges:
   • For CA SiteMinder r12 or higher, log into the Administrative UI
   • For CA SiteMinder 6.0 SPx, log into the Policy Server User Interface

   Note: For information on using these interfaces, see the documentation for the version of SiteMinder that you are using.

2. Locate the policy domain for the appropriate Identity Manager Environment.

   This domain is created automatically when CA Identity Manager integrates with SiteMinder. The domain name has the following format:

   Identity Manager-environmentDomain

   In this format, Identity Manager-environment specifies the name of the environment you are modifying. For example, when the name is employees, the domain name is employeesDomain.

3. Create a new realm with the following resource filter:

   /iam/immanage/

4. Create a new rule for the realm. Specify an asterisk (*) as the filter to protect all pages in the Management Console.
5. Create new a policy and associate it with the rule you created in the previous step.

   Be sure to associate users who can access the Management Console with the policy.

6. Restart the application server.