If SiteMinder protects CA IdentityMinder using a <auth> authentication scheme, the following tasks are disabled in CA IdentityMinder:
This is because SiteMinder defines one authentication scheme for a protected resource. All CA IdentityMinder-protected tasks have the same URL, which is protected by one SiteMinder authentication scheme. As a result, the same authentication scheme covers all CA IdentityMinder tasks.
When ArcotID authentication protects the CA IdentityMinder URL, users have to provide an ArcotID to access tasks. Users who access the tasks listed above do not have an ArcotID yet, so they cannot provide it to access the tasks.
To prevent this issue, use an authentication scheme other than <auth> when SiteMinder protects CA IdentityMinder tasks. Examples: Active Directory or LDAP.
Note: Create/Reset My ArcotID or Download My ArcotID are sensitive tasks. CA Technologies strongly recommends that you configure these tasks as protected tasks. If you configure these tasks as public tasks, users can access them without providing credentials. For more information about public tasks, see Self-Service Tasks in the User Console Design Guide.
|
Copyright © 2013 CA.
All rights reserved.
|
|