Follow the steps below to configure your CA Single Sign-On server for CA Identity Manager.
Create the CA Single Sign-On administrator account on the CA Single Sign-On server. Add the admin and auditor keywords to the selang command to grant the correct privileges to the administrator. In selang, enter the following command:
nu administrator_name password(administrator_password) admin auditor
The user ID that the administrator uses to log on to the CA Single Sign-On Server.
The administrator password for the user ID.
Note: We recommend that you do not use a user ID named “Administrator” to define a CA Single Sign-On endpoint for Windows 2000.
Enter the following command to add administrator_name to the predefined group _ps-adms.
join administrator_name group(_ps-adms)
Enter the following commands to ensure the administrator account is created in the native operating system with the same password.
env(native)
eu administrator_name password(administrator_password)
env(seos)
Enter the following command to enable the CA Access Control and CA Single Sign-On authentication methods for the administrator.
eu administrator_name auth_type(method5, method20)
Enter the following command to set the CA SSO password for the administrator's account to the same password you specified in Step 1.
el administrator_name appl(__SSO__) currpwd(administrator_password)
Give the administrator access to the CA Single Sign-On server by issuing the following command.
auth terminal server_name uid(administrator_name) acc(access_type)
Is the machine name of the CA Single Sign-On Server.
Is the administrator's account.
Is the access that the administrator needs. Read and write access is necessary. The keywords for access_type are READ, WRITE.
|
Copyright © 2014 CA.
All rights reserved.
|
|