Previous Topic: CA DataMinder Content Classification Service IntegrationNext Topic: Installation and Upgrade Guides


CA IdentityMinder Roles and Access Control

Integrating with CA IdentityMinder lets you can implement policy–based access control using CA IdentityMinder roles. These roles enable centralized management of user privileges in external applications.

Note: For more information about configuring the integration, see the CA Identity Manager documentation.

The integration requires:

CA SiteMinder® can also provide details about entitlements that a CA IdentityMinder user has in protected applications. As the following figure illustrates, a CA SiteMinder® administrator associates a response with an access rule in the policy. The response contains a response attribute that specifies a CA SiteMinder®–generated user attribute.

The CA SiteMinder®–generated user attribute retrieves task information from CA IdentityMinder. The Policy Server passes this information to the web agent as an HTTP header variable or a cookie. The web agent makes the header variable or cookie available to the protected application for fine–grained access control.

Graphic showing a CA Identity Manager Environment implementing fine-grained access control