When a user successfully logs into a protected resource, the Policy Server creates a session ticket. The session ticket is what the Policy Server uses to determine how long a user’s authentication remains valid. This session ticket is encrypted using the session ticket key and cached in the Agent User Cache.
You can choose to have the Policy Server generate the session ticket key using an algorithm, or you can enter a session ticket key in the CA SiteMinder® Key Management dialog box. For security reasons, the randomly generated key is recommended.
However, if your CA SiteMinder® implementation includes multiple key stores in a single sign-on environment, you must use the same session ticket key for all key stores.
|
Copyright © 2015 CA Technologies.
All rights reserved.
|
|