Implementing Policy › Security › CA EEM Authentication for CA Process Automation

CA EEM Authentication for CA Process Automation

CA SDM and CA Process Automation communicate using a web services exchange over HTTP. Although every measure is made to pass minimal amounts of sensitive information between the products, a malicious entity can access user names, passwords, and proprietary information. You can take deliberate steps to secure server communication.

For CA Process Automation authentication, consider the following recommendations:

• As an option, you can configure CA Process Automation to use CA EEM as an authentication server. CA Process Automation implements default groups and policies within CA EEM. You can modify the default groups and policies to meet the needs of your organization.
• Using CA EEM eliminates the need to pass plain text user names and passwords for authentication purposes. If you are using multi-tenancy, CA EEM is required for enabling multi-tenancy within CA Process Automation.

  Note: To achieve authentication security in this integration, it is not necessary to have CA SDM configured to use CA EEM. However, CA EEM is required for CA Process Automation multi-tenancy implementation. For information about implementing multi-tenancy with CA Process Automation, see the CA Process Automation user guide documentation. For information about configuring CA Process Automation to use CA EEM as an authentication server, see CA Process Automation installation and configuration documentation.

• Configure CA Process Automation to communicate using secure communications over HTTPS. HTTPS URLs use SSL/TLS to eliminate plain text exchanges while protecting proprietary and other sensitive data from accidental or malicious disclosure.

  Note: For information about configuring CA Process Automation to use HTTPS, see the CA Process Automation installation and configuration documentation.