Configuration Guide › CA SiteMinder Integration › SiteMinder Operations › Collect User Credentials Using a Custom Authentication Scheme

Collect User Credentials Using a Custom Authentication Scheme

SiteMinder uses an authentication scheme to collect user credentials and determine identity of a user at login time. Once a user is identified, CA IdentityMinder generates a personalized User Console that is based on the privileges of the user.

You can implement any SiteMinder authentication scheme to protect a CA IdentityMinder Environment.

For example, you can implement an HTML Forms Authentication Scheme, which collects credentials in an HTML form. Using an HTML form lets you create a login page that may include branding elements, such as a company logo, and links to the self-registration and forgotten password pages.

Note: For information about authentication schemes, see the CA SiteMinder Policy Server Configuration Guide.

Follow these steps:

1. Log in to one of the following interfaces:
   • For CA SiteMinder Web Access Manager r12 or higher, log in to the Administrative UI.
   • For CA eTrust SiteMinder 6.0 SP5, log in to the Policy Server User Interface.

   Note: For information about using these interfaces, see the documentation for the version of SiteMinder that you are using.

2. Create an authentication scheme as described in the CA SiteMinder Policy Server Configuration Guide.
3. Modify the realm that protects the appropriate CA IdentityMinder Environment to use the authentication scheme you created in Step 1.

   The realm name has the following format:

   Identity Manager-environment_ims_realm

   Note: If you configured support for public tasks, you see an additional realm, Identity Manager-environment_pub_realm. This realm uses an anonymous authentication scheme to enable unknown users to use the self-registration and forgotten password features without supplying credentials. Do not modify the authentication schemes for these realms.