Index

Activate the Partnership

Active Directory and NetBIOS Names

Active Directory as a Policy Store

Active Directory Considerations

Active Directory Information Worksheet

Active Directory Integration Enhancement For LDAP Namespace (43264, 42601)

Active Directory LDS Prerequisite

Active Directory LDS Server Information

Active Directory Overview

Active Directory Synchronization (115248)

Active Directory Users Cannot Change Passwords

Active Expression Examples

Active Expression Parameters

Active Expressions

Active Monitors

Active Response Attributes

ActiveExpr Method—Sets or Retrieves the Active Expression Associated with the Policy

ActiveExpr Method—Sets or Retrieves the Active Expression for the Rule

ActiveExpression Methods

AD Namespace for an Active Directory Connection

Add a CA Certificate for an SSL Back Channel at the SP

Add a Certificate

Add a Change Password Link

Add a Claim to an Assertion

Add a Client Certificate to the Certificate Data Store

Add a Confidence Level to a Policy

Add a CRL for Certificate Management

Add a Host Name for a Global Policy

Add a Name ID to the Assertion

Add a New Compliance Report

Add a Private Key and Certificate Pair

Add a Range of IP Addresses

Add a Range of IP Addresses for a Global Policy

Add a Resource Partner to an Affiliate Domain

Add a SAML 2.0 Service Provider to an Affiliate Domain

Add a Session Store Administrative User and Root DN

Add a Subnet Mask

Add a Subnet Mask for a Global Policy

Add a Supported JRE to the System Path

Add a User to a Group

Add a User to a Role

Add a Web Agent to the Federation Agent Group

Add Agent Configuration Parameters for CA SiteMinder® Agent for IIS Manually (CQ 135135)

Add Agents to an Agent Group

Add an Application to an XCart File

Add an Expression to a Policy

Add an LDAP Expression to a Policy

Add an Object to a Directory

Add and Remove Global Policy Time Restrictions

Add CA IdentityMinder Environments to a Domain

Add CA IdentityMinder Roles

Add CA SiteMinder® Protection to Additional Virtual Sites on IIS Web Servers Silently

Add CA SiteMinder® Web Services Security Protection to Additional Virtual Sites on IIS Web Servers Silently

Add end points to your application components

Add endpoints to your realms

Add Entities to an Affiliate Domain

Add Entries

Add Entries to the Database

Add Event Handler Libraries

Add Exceptions to Security–Enhanced Linux

Add FPS Log

Add Functionality to the Federation Deployment

Add Global Rules to a Global Policy

Add Method—Adds an Agent, Response, Rule, or Nested Group Object to the Group

Add Multiple Policy Servers to the Host Configuration Object

Add Objects to the Policy Store

Add Policy Data

Add Relying Partners to the FWS Policy for Obtaining Assertions

Add Relying Partners to the Policy for the Attribute Authority Service

Add Responses to a Response Group

Add Revocation Information

Add Rules to a Policy

Add Rules to a Rule Group

Add Session Attributes to the Assertion Configuration

Add Single Logout

Add SQL Query Schemes to ODBC User Directory Connections

Add the Domino Web Agent DLL (Windows)

Add the Domino Web Agent Library File (UNIX)

Add the logging parameter values to your agent configuration object

Add the Plug–in

Add the Root Certificate Authority to the Certificate Database

Add the Rule to a Policy

Add the Server Certificate to the Certificate Database

Add the Service Provider to the Affiliate Domain at the IdP

Add the User Directory to the Affiliate Domain at the IdP

Add the Web Agent Domino DLL file to your upgraded Agent on Windows

Add the Web Agent Domino Library file to your upgraded Agent on UNIX/Linux

Add the Web Agent Response to a Rule

Add Time Restrictions to a Policy

Add Time Restrictions to Global Rules

Add Time Restrictions to Rules

Add To Group

Add Users by Manual Entry

Add Users to a Policy

AddAdmin Method—Adds an Administrator to the Domain

AddAdmin Method—Associates an Administrator with an Affiliate Domain

AddAssertionConsumerService Method—Adds an Assertion Consumer Service to a SAML Service Provider Object

AddAssociation Method—Adds a Name and Value for this Configuration

AddAssociationMultiValue Method—Adds a Multi-valued Configuration Parameter

AddAttribute Method—Adds a New Affiliate Attribute

AddAttribute Method—Adds an Attribute to the SAML 2.0 Service Provider

AddAttribute Method—Adds Attribute to Resource Partner

AddAttributeToSAMLScheme Method—Adds New Attribute to Authentication Scheme

AddCluster Method—Adds an Empty Cluster to the Host Configuration

Addition of the OpenID Authentication Plug-in

Additional Advantages

Additional Arguments

Additional Configurations Requiring the ServerPath Parameter

Additional Information About Bulk Loading Audit Data ODBC Database Required in Policy Server Administration Guide (159529)

Additional Steps for SiteMinder Agent Security Interceptor Installations

AddMessageConsumerPluginToSAML1xScheme Method--Adds Message Consumer Plug-in Class Name

AddParameter Method—Adds Session Variable Name-Value Pair to Parameters List

AddRedirectURLToSAML1xScheme Method--Adds Redirect Value to an Authentication Scheme

Addressing Mail

Addressing the Message

AddRule Method—Adds a Rule to the Policy

AddServer Method—Adds a Non-clustered Server to the Host Configuration

AddServer Method—Adds a Server to the Cluster

AddServerConfig Method—Adds Policy Server Configurations to Agent API Object

AddTargetConfigToSAML1xScheme Method--Sets the Default Target Configuration

AddTrustedHost Method—Creates or Modifies Trusted Host Object

AddUser Method—Adds a New User to the Affiliate Object

AddUser Method—Adds a User to the Policy

AddUser Method—Adds a User to the SAML 2.0 Service Provider

AddUser Method—Adds User to Resource Partner

AddUserDir Method—Associates a User Directory with an Affiliate Domain

AddUserDir Method—Associates a User Directory with the Domain

Adjusting Global Settings

Admin Applet Only Allows 10 IP Addresses in Policy [153776]

Admin Translation

AdminChange Format

Administration and Operations

Administration Format

Administrative Journal and Event Handler Overview

Administrative UI Added an Extra Pair of Parenthesis on the LDAP Notation (174905)

Administrative UI Allows Browser to Store and Autocomplete Password Field Contents (161675)

Administrative UI and FSS Administrative UI inconsistencies in 12.0.3.9 Regarding Host Configuration Object - Clusters (CQ160633)

Administrative UI and FSS UI Inconsistencies in Host Configuration Object - Clusters Configuration [159938]

Administrative UI and Internet Explorer 9 (149209)

Administrative UI and Oracle Policy Store Objects (65782)

Administrative UI and smkeytool Fail to Properly Import and Store Certificates Over 1024 Characters to Active Directory Policy Store (160848)

Administrative UI Becomes Unresponsive

Administrative UI Behavior Confusing After Inactivity Timeout (171765)

Administrative UI Console Was Missing Entire Section

Administrative UI Contents Not Displaying Properly (176842)

Administrative UI Deletes Users from Policy Objects When Modifying Realms or Policies After Importing r6.x Policy Store (157701)

Administrative UI Displays Missing File Error

Administrative UI Hangs

Administrative UI High Availability

Administrative UI Installation Checklist

Administrative UI Installation Options

Administrative UI Installation Requirements

Administrative UI Linux Prerequisite Information in Policy Server Installation Guide Needs Consolidation (171403)

Administrative UI Localization Strings Missing [148680]

Administrative UI New Look and Feel

Administrative UI Not Working After Upgrade (176504)

Administrative UI Overview

Administrative UI Properties Files

Administrative UI Protection with SiteMinder

Administrative UI Registration Worksheet

Administrative UI Requirements

Administrative UI Susceptible to Clickjacking Attacks

Administrative UI System Requirements

Administrative UI Troubleshooting

Administrative UI Upgrade Options

Administrative UI Upgrade Paths

Administrative User Interface Management

Administrator Accounts

Administrator Authentication

Administrator Considerations

Administrator Credentials

Administrator Functions

Administrator Methods

Administrator Rights

Administrator Store Options

Administrator Use Cases

Adobe Acrobat Reader Won’t Install

Advanced Configuration

Advanced Configuration Settings

Advanced Message Control

Advanced Password Services

Advanced Password Services (APS) Guide

Advanced Password Services (APS) Issues

Advanced Password Services (APS) Release Notes

Advanced Policy Options

Advanced Rule Options

Advanced User Attribute Mapping Examples

Advantages of Centrally Configuring Web Agents

Advantages of Federation and Web Access Management

Advantages of Securing Your Resources Using Application Objects

Advantages of Session Variables

AE failed to load library 'smjavaapi’. System error

Affiliate Attribute Methods

Affiliate Attribute Types

Affiliate Domain Methods

Affiliate Domain Overview

Affiliate Domains

Affiliate Object Methods

Affiliation Overview

Affiliations for Single Logout

Affiliations for Single Sign-On

After Certificate Prompt, Authentication Failure Received

After Following Previous Procedure, Still No Certificate Prompt

AFTER Function--Find a String

After You Upgrade the Policy Server

Agent Administration Methods

Agent API

Agent API Class Hierarchy

Agent API Overview

Agent API Services

Agent API Support

Agent Call Sequence

Agent Configuration Functions

Agent Configuration Methods

Agent Configuration Object

Agent Configuration Object Methods

Agent Configuration Object Overview

Agent Configuration Object Settings Used by FWS

Agent Configuration Parameters Methods

Agent Configuration Worksheet

Agent Connection Manager Configuration File

Agent Crash

Agent Discovery

Agent Discovery and IIS Web Agents (134318)

Agent Discovery Introduced

Agent Error Codes

Agent for Domino Upgrade Roadmap

Agent for IIS Installation and Configuration Roadmap

Agent for IIS Installation Guide

Agent for IIS Troubleshooting Log

Agent for IIS Upgrade Roadmap

Agent for Oracle iPlanet Upgrade Roadmap

Agent for SharePoint 2010 Does Not Honor the TraceFileSize ACO Parameter [154214]

Agent Functions

Agent Groups

Agent Initialization

Agent Installation Compared to Agent Configuration

Agent Installation Failure on 64-bit Agent [164149]

Agent Installation Worksheet

Agent Keys

Agent Keys Used in Dynamic Key Rollover

Agent Methods

Agent Method—Sets or Retrieves an Agent Object or an Agent Group Object Associated with the Global Rule

Agent Method—Sets or Retrieves the Agent for the Realm

Agent Operations

Agent Owner Deploys the Custom CA SiteMinder® RBA Integration Script on Each Web Server

Agent Parameters

Agent SDK Updated to Support SSO Zones (168974)

Agent Setting for Federation Domains

Agent Shared Secrets are Limited to 175 Characters (30967, 28882)

Agent to Policy Server Communication

Agent Type

Agent Type Attributes

Agent Type Methods

Agent Type Worksheet

Agent Upgrade Roadmap

Agent Using an SDK Script to Update ACO Agentname Parameter Lost Its Configuration [155790]

AGENT_FAILURE(-1)

AGENT_INIT (-17)

Agents and Agent Groups

Agents and Password Services

Agents and Proxy Servers

Agents and Reverse Proxy Servers

AIX Requirements

Alias

Alias Attribute Use Case

All (or many) accounts are disabled when a single user fails authentication

All Components in Multiple Data Centers

All Components in One Data Center

ALL Function--All Bits Set

Allow Access to Federation Web Services (asserting party)

Allow Automatic Access to Resources that use the OPTIONS Method

Allow Nested Groups Access to Resources

Allow Nested Groups in Policies

Allow Un-restricted Access to URIs

Allow User Creation in the Configuration Partition

Allowable IP Addresses for Global Policies

Allowable IP Addresses for Policies

Allowed

Allowed Characters

AllowLowerPriorityPolicies Method—Sets Flag To Determine whether Password Policies with Lower Priority Should Be Evaluated

AllowNested Method—Sets or Retrieves the AllowNested Flag

AllowNestedGroups Method—Allows the Password Policy To Be Configured for Nested Groups

AllowNotification Method—Sets or Retrieves the Event Notification Property

Alternative Authentication Schemes

Alternative Character Sets

Always Redirect

Always Redirect AZ

Analyze Your CA SiteMinder® Web Services Security Environment

Analyze Your SiteMinder Environment

AND Operator

AND Users/Groups Check Box

ANDBITS Function--Perform a Bitwise AND Operation

Anonymous Authentication Schemes

Anonymous Scheme Prerequisites

Anonymous Template

AnonymousIDAttr Method—Sets or Retrieves Anonymous DN Name

ANY Function--Any Bits Set

Apache 2.0 Web Server and ServletExec 5.0 on Red Hat Enterprise Linux AS (28447, 29518)

Apache Agent is Enabled but Default Server Page or Protected Resource Not Accessible

Apache Process Aborts on Accessing login.fcc File (177053)

Apache Server Shows shmget Failure On Startup

Apache Tomcat Installation

Apache Web Agent Not Operating

Apache Web Server Settings

Apache-based server Preparations for Linux operating environments

Apache-based server Preparations for Windows operating environments

Apache-based server Preparations on UNIX operating environments

API Error Appears

API Overview

APIs for Legacy Federation

Append Messages to an Existing SiteMinder WSS Agent Log File

APPLICATION (5)

Application Integration at the Relying Party

Application Macros

Application Programming Interface

Application Programming Interface (APSAPI)

Application Resources Dialog Topic in Administrative UI Help Has Incorrect Statement Regarding Wildcard Characters (179031)

Application Security Policies Based on Roles

Application Security Policies with User Mapping and Named Expressions

Application Security Policy Based on CA DataMinder Content Classifications

Application Security Policy to Protect a Web Portal

Application Server

Application Server Agent fails to Reconnect to Policy Server (167819)

Application Server Agents

Application Server Information

Application Server Requirements

Application Server Vendors

Application Session Information

Application Tier Performance

Applications

Apply CA SiteMinder® Behavior to a Web Application Client

Apply CA SiteMinder® Changes to Oracle iPlanet Configuration Files with Oracle iPlanet Administration Server Console for SunOne 6.1 Servers

Apply Changes to your Upgraded CA SiteMinder® Files with the iPlanet Administration Console

Apply Named Expressions

Apply the Unlimited Cryptography Patch to the JRE

Apply the Unlimited Cryptography Patch to the JRE for SiteMinder WSS Agents

APS Attributes/Enable/Disable (all platforms)

APS Client Components Must Be Configured as 4.x Agents Which Do Not Support IPv6 Addressing (167337)

APS Configuration File (APS.CFG)

APS does not disable LDAP user accounts

APS Processing during User Authentication

APS Uses Unsafe Functions on Windows Server 2008

APS.cfg configuration

APSAdmin

APSAdmin (Help Desk Interface Stub)

APSAdminGetDirectory

APSAdminRead

APSAdminWrite

APSComplexity - Calculate Password Complexity

APSEncrypt - Encrypt an Administrator Password

APSExpire

APSExpire Event Log

APSForcePWChg - Set Force Password Change Flag

APSMailTest - Test Email Settings

APSPing

APSPing - Test connectivity

APSTestSettings - Check APS Configuration

APSVersion - Display Module Version Numbers

APSXlateTest

APSXlateTest - Test Translation Settings

Architectural Considerations

Architectural Overview

Architectural Use Cases

Architecture of the .NET SDK

Arguments for smldapsetup

Arithmetic Addition Operator

Arithmetic Division Operator

Arithmetic Multiplication Operator

Arithmetic Subtraction Operator

Artifact Resolution Service URL (SAML 2.0)

ASA Agents Can Enable TCP/IP Keep-Alives

Asserting Party Not Accepting ACS URL in an Authentication Request (170971)

Assertion Attribute Configuration Examples

Assertion Configuration

Assertion Configuration at the Asserting Party

Assertion Consumer Service URL (SAML 2.0)

Assertion Processing Customization (Relying Party)

Assertion Retrieval Service URL (SAML 1.x)

Assertion Validity for Single Sign-on

AssertionPluginClass Method—Sets or Retrieves the Name of an Assertion Generator Plug-in

AssertionPluginParameters Method—Sets or Retrieves a Parameter String

Assign a Validation Identity Mapping to a Realm

Assign Affiliations at the Identity Provider

Assign Affiliations at the Service Provider

Assign an Authorization Directory to a Realm

Assign an Authorization Identity Mapping to a Realm

Assign User Directories

Assign Web Agent Identities for Virtual Servers

Associate a Global Rule with a Response

Associate a Rule with a Global Response

Associate a Rule with a Response or Response Group

Associate a SAML 1.x Affiliate with an Affiliate Domain

Asynchronous Call Support Configuration

Asynchronous Call Support During Failover and Connection Pooling

AT Function--Is User at Specified LDAP DN

Attach the Policy Store Data

Attribute Length

Attribute Mapping

Attribute Match Maximum

Attribute Mode Types

Attribute Service URL (SAML 2.0)

Attribute Suppression

Attribute Types

Attribute/Column Names

Attribute-based Delegation

Attributes and Expressions Reference

Attributes Appear Truncated at the Relying Party (157913)

Attributes for Customizing an Application

Attributes for SSO and Attribute Query Requests

Attributes Terminated with a Space in Java (13712)

AttributeType Not Registered Error in the Administrative UI Log

AttrMap Method—Sets or Retrieves the Attribute Map for Certificate Mapping

Audience Method—Sets or Retrieves a URI

Audit

Audit Data Import Prerequisites for ODBC

Audit Data Import Tool for ODBC

Audit Database and Report Server Connectivity

Audit Log

Audit Method—Audits Authorizations Performed out of Agent Cache

Audit Store Upgrade Scripts

Audit-based Reports Return No Results

Auditing and Performance

Auditing Services and Transaction Tracking

Auditing User Authorizations

AuthDir Method—Sets or Retrieves the Authentication Directory

Authenticate

Authenticate as the Actual User or the Default User

Authenticate as the Domino Super User

Authenticate User

Authenticate Users in Heterogeneous RADIUS Environments with One User Directory

Authenticate Users Using an OAuth Authorization Server

Authenticate Users with No CA SiteMinder® Session

Authenticate Users with No CA SiteMinder® Session (SAML 1.x)

Authenticate Users with the Domino Server

Authenticated CA SSO Client User Accesses SiteMinder Resource

Authentication

Authentication and a Centralized Login Server

Authentication and Authorization APIs

Authentication and Authorization Format

Authentication and Authorization Map Methods

Authentication and Authorization Mapping Types

Authentication API

Authentication API Overview

Authentication Context Processing (SAML 2.0)

Authentication Context Processing for IdP-initiated SSO

Authentication Context Processing for SP-Initiated SSO

Authentication Events

Authentication Fails After Modifying Authentication Method

Authentication Guidelines

Authentication Hook

Authentication in a Hosted CA Arcot Integration

Authentication in an On–Premise Arcot Integration

Authentication Mode for Partnership Federation

Authentication of Encrypyted Requests Intermittently Failing with Red Hat Policy Server (77348)

Authentication of User Credentials

Authentication over SSL

Authentication Processing for Hierarchical Policies

Authentication Scheme

Authentication Scheme Configuration

Authentication Scheme Functions

Authentication Scheme Methods

Authentication Scheme Overview

Authentication Scheme Processing

Authentication Scheme Types

Authentication Schemes

Authentication Schemes and Credential Requirements

Authentication Schemes Overview

Authentication Schemes Supporting MBCS URLs

Authentication Server Data

Authentication Service Models

Authentication/Authorization Map Functions

AuthLoginTrackFailure Method—Allows a User To Login if Login Tracking Data Fails

AuthnRequest Query Parameters Used by a SiteMinder SP

AuthnRequest Query Parameters Used by an SP

AuthnRequest Service (SAML 2.0)

Authorization

Authorization API

Authorization API Overview

Authorization Cache

Authorization Events

Authorization Fails for Users in ODBC Directories Configured With UNION-based Query Schemes (159354)

Authorization Fails with EPM Application (175148)

Authorization Function Declarations

Authorization Guidelines

Authorization Hook

Authorization Identity Mappings

Authorization Mapping and AZRedirect

Authorization Processing for Hierarchical Policies

Authorization Services

Authorization Variables

Authorize Users with Attributes from an Assertion Query

AuthScheme Method—Sets or Retrieves an Authentication Scheme

AuthScheme Method—Sets or Retrieves the Authentication Scheme for the Realm

AuthURL Method—Sets or Retrieves a URL

Auto Force Change

Auto Reset Failure Count

Automated Email Notification does not send email

Auto-sweep Setting Would not Change to False (CQ157057)

Availability of CA SiteMinder®-generated Response Attributes

Avoid Policy Store Corruption

Avoid Profiler Console Output Problems on Windows

AzDir Method—Sets or Retrieves the Authorization Directory

AzUserDir Method—Sets or Retrieves the Authorization User Directory for the Realm

Back Channel Authentication for Artifact SSO

Back Channel Communication Algorithms

Back Channel Configuration for Single Logout

Back Channel Processing Fails with Client Certificate Protection (168151, 168278, 169147, 168774, 169312)

Back Option Not Supported During Console Mode Install (74339)

Backchannel Configuration for HTTP-Artifact SSO

Backup Policy Servers

Backward Compatibility Settings

Bad Search Filter Error (169127)

BAD_SERVICE (6)

BadLoginDisablementPeriod Method—Sets or Retrieves the Number of Minutes Before a User Account Is Disabled

Basic .fcc Requirements for Impersonation

Basic Agent Setup and Policy Server Connections

Basic Architecture

Basic Authentication Schemes

Basic Authentication to Protect the Service that Retrieves Assertions

Basic Message Control

Basic Over SSL Template

Basic over SSL to Protect the Service that Retrieves Assertions

Basic SAML 2.0 Partnership

Basic Template

BEFORE Function--Find a String

Before You Compile an XML-Enabled Agent

Before You Configure a Connection over SSL

Before You Install

Before You Install the Policy Server

Before You Upgrade

Before You Upgrade an r12.x Web Agent

Before You Upgrade r6.x Web Agents

Before You Use the Directory API

Begins-with Operators

BELOW Function--Is User Below Specified LDAP DN

Benefits of Named Expressions

Best Practice Recommendation

Best Practices

Best Practices for Storing Legacy/Back-End Credentials

BIEK

Bind Policies to Group Attributes

Bind Policies to Organization Attributes

Bind Policies to Organization Units

Bind Policies to Organizational Roles

Bind Policies to Organizations

Bind Policies to SQL Queries

Bind Policies to User Attributes

Bind Policies to User Groups

Bind Policies to Users with the Manual Entry Field

Bind Policies to Users with the Search Feature

Binding Policies to Custom Object Classes

Bindings for Single Logout

Bit Masks in Mask Attribute Mapping

BOOLEAN Function--Convert to "TRUE" or "FALSE"

Boolean User Directory Attribute Mappings in Application Object Roles Fail (154130)

Browser Refresh and Back Buttons Cause Resubmission of Data (149633)

BUFFER_VIOLATION (4)

Build a Directory Application

Bulk Loading Audit Records Fails on Oracle (161705)

Button Definitions

CA Agent for SharePoint Owner Tasks

CA Arcot A-OK

CA Arcot A–OK Authentication and Risk Analysis

CA Arcot A-OK Integration Use Cases

CA Arcot Authentication and Risk Analysis

CA Arcot Integration Use Cases

CA Arcot WebFort and RiskFort

CA Business Intelligence

CA Compliance Security Manager Configuration File

CA DataMinder CCS Administrator Tasks

CA DataMinder Content Classfication Service

CA DataMinder Content Classification Service

CA DataMinder Content Classification Service Integration Roadmap

CA DataMinder Content Classification Service Preclassification Agent

CA Directory as a Policy Store

CA Directory as a Session Store

CA Directory Information Worksheet

CA Directory Password Policy Control

CA Identity Manager

CA IdentityMinder Roles and Access Control

CA LDAP Server for z/OS Overview

CA LDAP Server r15 for z/OS (ACF2) Backend Security Option

CA LDAP Server r15 for z/OS (RACF) Backend Security Option

CA SiteMinder Agent API Required Code Block

CA SiteMinder®

CA SiteMinder® Administrative UI

CA SiteMinder® Administrator Tasks

CA SiteMinder® Agent Communicating Across a Data Center

CA SiteMinder® Agent Configuration Worksheet for IIS Web Servers

CA SiteMinder® Agent for JBoss

CA SiteMinder® Agent for JBoss Guide Provides Incorrect Directions for UNIX Environment Settings (165866)

CA SiteMinder® Agent for JBoss Issues

CA SiteMinder® Agent for SharePoint

CA SiteMinder® Agent Performance

CA SiteMinder® Agent Preparation Roadmap

CA SiteMinder® Agents

CA SiteMinder® and CA Security Compliance Manager

CA SiteMinder® and CA SSO Integration Prerequisites

CA SiteMinder® as a Service Provider

CA SiteMinder® Audit Database

CA SiteMinder® Authentication and CA Arcot Risk Analysis

CA SiteMinder® Authorization and Confidence Levels

CA SiteMinder® Bookshelf

CA SiteMinder® Capacity Planning

CA SiteMinder® Components

CA SiteMinder® Configuration File

CA SiteMinder® Default HTTP Headers

CA SiteMinder® Enhanced Session Assurance Architecture and Performance Considerations

CA SiteMinder® Environment Variables are not set in the Profile File

CA SiteMinder® eTelligent Rules Benefits

CA SiteMinder® Failover and Load Balancing with Multi-Process Web and Application Servers

CA SiteMinder® Failover and Load Balancing with Multi-Threaded Web and Application Servers

CA SiteMinder® Federation

CA SiteMinder® Federation .NET SDK Logging

CA SiteMinder® Federation Deployments

CA SiteMinder® Federation does not Support Directory Mapping (147993)

CA SiteMinder® Federation Java SDK Logging

CA SiteMinder® Federation Java SDK Programming Interfaces

CA SiteMinder® Host Configuration File

CA SiteMinder® IIS 7.x Web Servers and Application Request Routing (ARR)

CA SiteMinder® Key Tool

CA SiteMinder® MIB

CA SiteMinder® OneView Monitor

CA SiteMinder® Policy Design and Performance

CA SiteMinder® Policy Membership and Authorization Performance

CA SiteMinder® Policy Objects and Performance Roadmap

CA SiteMinder® Policy Server

CA SiteMinder® Policy Server Startup Event Log

CA SiteMinder® Reverse Proxy Deployment Considerations

CA SiteMinder® Secure Proxy Server

CA SiteMinder® Session Store

CA SiteMinder® SNMP Module Contents

CA SiteMinder® Support Matrix

CA SiteMinder® Test Tool

CA SiteMinder® Web Services Documentation (173173)

CA SiteMinder® Web Services Security Agent for IBM WebSphere Guide

CA SiteMinder® Web Services Security Agent for Oracle WebLogic Guide

CA SiteMinder® Web Services Security Agent for Web Servers Introduction

CA SiteMinder® Web Services Security Agent Guide for Apache-based Web Servers

CA SiteMinder® Web Services Security Agent Guide for IIS Web Servers

CA SiteMinder® Web Services Security Agent Guide for iPlanet Web Servers

CA SiteMinder® Web Services Security Agents

CA SiteMinder® Web Services Security Architecture and Components

CA SiteMinder® Web Services Security Authentication Schemes and Authentication Performance

CA SiteMinder® Web Services Security Capacity Planning

CA SiteMinder® Web Services Security Fails To Generate WS-Security Headers Using RSA-OAEP Encryption

CA SiteMinder® Web Services Security Overview

CA SiteMinder® Web Services Security Policy Configuration Guide

CA SiteMinder® Web Services Security Programming Guide for Java

CA SiteMinder® Web Services Security SDK API Reference Material

CA SiteMinder® Web Services Security SDK Contents

CA SiteMinder® Web Services Security SDK Issues

CA SiteMinder® Web Services Security SDK Overview

CA SiteMinder® Web Services Security Upgrade Guide

CA Software Prerequisites

CA SSO (smauthetsso) Custom Authentication Scheme Fails in FIPS Mode on Windows (150671/164657)

CA SSO/WAC Integration

CA Technologies Product References

CA Top Secret r12 (TSS) Backend Security Option

CA User Activity Reporting Module Integration

Cache Anonymous Users

Cache Commands

Cache Failure Timeout

Cache Management

Cache Management Overview

Cache Response Attributes

Cache Time Limit while Creating a Response Attribute

Cache Update Log Messages

CacheCRL Method—Determines whether To Cache Certificate Revocation List (CRL) entries

Caching and Anonymous Users

Calculate an Average Elapsed Time

Cannot Create a Federation Partnership in the Administrative UI on Windows Server 2008 R2 with French Language Pack (159616)

Cannot Create User Name with Special Characters

Cannot Find the Administrative UI Registration Log

Cannot Find the Default Logging File

Cannot Register a Policy Server Connection

Cannot Specify Non-English Path to Install Administrative UI

Cannot View Reports if Report Server Connection is Established Using an IP Address (167987)

Capacity Planning Introduced

Case 1: Policy Membership and User Directory Requests

Case 1: User Authentication and Directory Requests

Case 2: Policy Design and User Directory Requests

Case 2: Responses and User Directory Searches

Case 3: Responses and User Directory Requests

Case 3: Total Directory Requests for Authorization

Case 4: Password Services and Directory Requests

Case 5: Total Directory Requests for Authentication

Case Switch

Case: Estimate the Peak User Directory Search Rate

Case: Estimate the Sustained User Directory Search Rate

CENTER Function--Pad a Source String

Central and Local Configuration Together

Central and Local Configurations Together

Central Configuration

Central Host Configuration

Central Policy Server Management

Centralize Login Pages

Certain User Name Characters Cause Authenticating or Authorizing Problems (39832)

Certificate and Private Key Usage by CA SiteMinder®

Certificate Attributes that Require Custom Mappings

Certificate Authorities and Web Services Variables

Certificate Authority (CA) Certificate Usage

Certificate Cache Refresh Period

Certificate Data Management

Certificate Data Store

Certificate Data Store Error Appears

Certificate Data Store Management

Certificate Imports

Certificate List Cross References Partnerships

Certificate Map Methods

Certificate Mapping and Validity Checking for X.509 Certificates

Certificate Mapping Attribute Types

Certificate Mapping Directory Types

Certificate Mapping Flags Definitions

Certificate Mapping for X.509 Client Authentication Schemes

Certificate Mapping Functions

Certificate Mapping Methods

Certificate Mappings Issue with certain Policy Stores (27027, 30824, 29487)

Certificate Method—Sets or Retrieves User's X.509 Cerficate

Certificate Revocation List Checking

Certificate Revocation List Issuer

Certificate Revocation List Updates

Certificate Validity Checking (optional)

Certificate-based Authentication Tests

CertificateFile Method—Sets or Retrieves User's X.509 Certificate Using File

Certificates for SSL Connections

Certificates To Secure the Artifact Back Channel

CertRequired Method—Determines whether Certificate Validation is Required

ChalRespAttr Method—Sets or Retrieves Challenge/Response Name

Change a Boolean Operator in an Expression

Change Confirmation Mail

Change How Often an Agent Checks for Policy or Key Updates

Change IIS Settings Manually for CA SiteMinder® Authentication Schemes Requiring Certificates

Change IIS Settings Manually for CA SiteMinder® Web Services Security Authentication Schemes Requiring Certificates

Change My Password (SmCPW)

Change Pages

Change Password Forms

Change Password Interface (SmCPW)

Change Password Page Configuration

Change Profiler Settings

Change Required

Change Static Keys

Change the Authentication Scheme

Change the Content of the Existing Compliance Reports

Change the Default CRL Update Period

Change the Default Display

Change the Policy Server Super User Password

Change the SiteMinder WSS Agent Log File Name

Change the User Type in DMS Context

Change the Value of the DisableI18N parameter in your Agent Configuration Object

Change the Value of the DisableI18N parameter in your LocalConfig.conf File

Change the Value of the Line in the Registry File

Change the Value of the Registry Key

ChangeMyPassword

ChangeMyPassword2

Changes to Existing Features

Changing Document Root Folder after Agent Configuration Leaves Resources Unprotected

Changing the Graphics

Changing the Policy Server Super User Password

Changing the Prompts

CHAP Overview

CHAR Function--Convert an ASCII Value

Character Restriction for Passwords in Installations (72360)

Character Values

Check Certificate Validity with CRLs

Check Certificate Validity with OCSP

Check LDAP Password Existence

Check the Installed JDK Version

Check the Web Server’s Certificate Expiration

Checking at Authentication (SmAPS)

Choose How Content Types are Transferred in POST Requests

Choosing Whether to Protect the Intersite Transfer URL

CHUNKING (10)

Class Files to Check the Values of Claims

Class Files to Debug

Classes and Interfaces in the Authentication API

Classes for Internal Use

Cleanup Submitted Tasks

Clear FPS Log

Clear Login History

CLI Agent API Methods

CLI Example: Create a Policy Store Object

CLI Example: View and Set Individual Properties

CLI Policy Management Methods

Clicking Back Button in Secure Web Services from WSDL Wizard Sometimes Causes "Array Index out of range error -1" (72176)

Client Authentication Fails for SAML Artifact Single Sign-on

Client Certificate Auth to Protect the Service that Retrieves Assertion

Client Side (SmPortal) Errors

Cluster Configuration

Cluster Failover

Cluster Methods

Clustered and Non-Clustered Servers

Clustered Components for Scale

Clustered Environment

Clustered Environment Monitoring

Clustered Policy Servers

Clustering Policy Servers

CMS

CMS Cluster

Code an XML-Enabled Java Agent

Code Requirements

Code Samples

Collect Additional Attributes

Collect Detailed Agent Connection Data with an Agent Connection Manager Trace Log

Collecting Identification Information

Combination Alphanumeric

Combination Digits

Combination Letters

Combination Lowercase

Combination Other

Combination Punctuation

Combination Symbols

Combination Uppercase

Combinations of Character Types

Combined Central and Local Configuration

Combined Functions in New Agent for Internet Information Services (IIS) Web Servers

Command Line Interface Restrictions

Command Line Options

Command Line Parameters

Command Line Scripting (CLI) Documentation

Command Line Troubleshooting of the Policy Server

Command Options for smfedexport

Command Options for smfedimport

Command-line Procedure for CA Directory

Comments

Common CA SiteMinder® Environments

Common CA SOA Security Manager Environments

Common Classes

Common Data Types and Structure

Common Key Store Deployment

Common Key Store Single Sign–on Requirements

Common Policy Store and Key Store

Common Structure

COMMONDN Function--Find a Common Root

Commons Logging Classl Loading Problem

Communications Timeouts

Compare FPS Answer

Compare IP Addresses to Prevent Security Breaches

Comparing Federation and Web Access Management for Single Sign-on

Compatibility with Other Products

Compile an Apache Web Server on a Linux System

Compile an XML-Enabled Java Agent

Compile and Link a Custom Agent

Compiling & Linking

Complete the Administrative UI Installation Checklist

Complete the Authentication URL Policy

Complete the General Settings for the Affiliate

Complete the Service Provider Object Configuration

Complexity

Component Requirements for eTelligent Rules

Component Requirements for Web Service Variables

Component Versions in this Guide

Components for Legacy Federation

Components Required for CA SiteMinder® Federation

Components Required for eTelligent Rules

Comprehensive Log Out

Conditional Operator

Confidence Levels and CA SiteMinder® Authorization

Confidence Levels in Policies

Confidence Levels Introduced

Configuration

Configuration Changes Required for Oracle iPlanet Web Server

Configuration Considerations

Configuration Files used by the Web Agent

Configuration Information

Configuration Issue with the smpolicyapi Samplr on UNIX platforms

Configuration of All Custom Classes

Configuration Overview

Configuration Overview to Supply Attributes as HTTP Headers

Configuration Procedures Beyond the Simple Partnership

Configuration Requirements

Configuration Settings that Must Use the Same Values

Configuration Tables

Configuration Wizard No Longer Requires Microsoft SQL Server Administrator Account with Create Permission to Create if Schema is Present

Configuration Wizard Requirements

Configure a Basic Authentication Scheme

Configure a Basic or Forms Authentication Scheme

Configure a Basic Over SSL Authentication Scheme

Configure a CA SiteMinder® Kerberos Authentication Scheme

Configure a Certificate Mapping

Configure a Connection from the Policy Server to CA LDAP Server for z/OS

Configure a Connection to a CA DataMinder Content Classification Service

Configure a Credential Selector Page

Configure a Custom Agent Type

Configure a Custom Authentication Scheme

Configure a Customized Response

Configure a Default Global Validation Directory Mapping

Configure a Directory Mapping

Configure a Domain in Oracle Internet Directory

Configure a Global Active Policy

Configure a Global Response

Configure a Global Web Agent Response Attribute

Configure a Japanese User Store in Oracle

Configure a LanMan Directory Connection

Configure a LanMan User Directory Connection

Configure a MIME Type Mapping for the FCC on IIS and Domino Web Servers

Configure a MySQL Data Source for CA SiteMinder®

Configure a MySQL Policy Store

Configure a MySQL Sample User Directory

Configure a Name ID for a WS-Federation Assertion

Configure a Name ID for the Assertion

Configure a Nested Realm

Configure a Partnership Between the Federation System and Enterprise

Configure a Partnership for Name ID Management

Configure a Policy Domain

Configure a Policy Server as a Centralized Monitor for a Cluster

Configure a Policy Store

Configure a Policy to Associate Resources with User Roles

Configure a Policy to Protect the Authentication URL

Configure a Policy to Protect the Sample Application

Configure a RADIUS Agent

Configure a RADIUS CHAP/PAP Authentication Scheme

Configure a RADIUS Response Attribute

Configure a RADIUS Server Authentication Scheme

Configure a Realm

Configure a Realm Protected by a RADIUS Agent

Configure a Realm Protected by a SiteMinder Web Agent

Configure a Realm with a RADIUS Agent

Configure a Realm with a SiteMinder Web Agent

Configure a Remote Entity for Name ID Management

Configure a Response

Configure a Response Attribute that Contains a Variable

Configure a Response Group

Configure a Response to Produce a SAML Session Ticket

Configure a Response to Produce WS-Security Headers

Configure a Response to Send Attributes as HTTP Headers

Configure a Rule for Authentication Event Actions

Configure a Rule for Authorization Event Actions

Configure a Rule for Impersonation Event Actions

Configure a Rule for Web Agent Actions

Configure a SafeWord Server and HTML Forms Authentication Scheme

Configure a SafeWord Server Authentication Scheme

Configure a SAML 1.x Assertion

Configure a SAML or WS-Federation Authentication Scheme

Configure a SAML Session Ticket Authentication Scheme

Configure a SAML2 Response for Authentication Failure

Configure a SecurID Authentication Scheme

Configure a SecurID HTML Form Authentication Scheme

Configure a Separate Database for the Audit Logs

Configure a Separate Database for the Key Store

Configure a Separate Key Store

Configure a Single Target Realm for All Authentication Schemes

Configure a Single Use Policy

Configure a SiteMinder Agent Authenticator for an Individual Application on JBoss 5.x

Configure a SiteMinder Agent Security Interceptor Authentication Realm

Configure a SiteMinder WSS Agent and Register a Trusted Host

Configure a SiteMinder WSS Agent to Enable Fine-Grain Resource Identification

Configure a SQL Query Scheme

Configure a SQL Server Data Source for CA SiteMinder®

Configure a SQL Server Policy Store

Configure a SQL Server Sample User Directory

Configure a Thread Control File

Configure a Trust Relationship between Office 365 and STS (SOAP-based SSO)

Configure a Unique Realm for Each Authentication Scheme

Configure a User Directory Connection

Configure a User Directory for ICAS

Configure a User Lookup to Locate a User

Configure a User Store that Supports Unicode in SQL Server

Configure a Validation Identity Mapping

Configure a Variable for a Particular Variable Type

Configure a Web Agent in the Administrative UI

Configure a Web Agent Response Attribute

Configure a Web Application Client Response

Configure a Windows Authentication Scheme

Configure a WS-Federation Partnership with Office 365

Configure Access Control Settings

Configure Active Directory Connections

Configure Active Directory Global Catalog Directory Connections

Configure Active Directory LDS User Store Directory Connections

Configure Advanced FCC Settings

Configure Advanced Password Options

Configure Advanced Policy Components for Applications

Configure Advanced Settings for the Policy Server

Configure Affiliate Domains and Affiliate Objects

Configure Agent Key Generation

Configure Agent-related Environment Settings on JBoss 5.x

Configure Agent-related Environment Settings on JBoss 6.x

Configure Agents and Register a Trusted Host in GUI or Console Mode

Configure Agents and Register Your System as a Trusted Host

Configure Agents for IIS to Obtain User Credentials Without Redirecting to an NTLM Credential Collector (NTC)

Configure Agents for IIS to Support NT Challenge/Response Authentication

Configure Agents that Sit behind Proxy Servers

Configure Alerts

Configure Alias Settings to Enable HTML Forms Authentication

Configure Alias Settings to Enable HTML Forms Authentication Schemes (Optional)

Configure all Policy Servers to use the Key Store

Configure an Active Global Rule

Configure an Active Policy

Configure an Active Response that Retrieves a Claim Value

Configure an Active Rule

Configure an Affiliate Domain

Configure an Agent and Register Your System as a Trusted Host on Windows

Configure an Agent Group

Configure an Agent Object for a 4.x Web Agent Identity

Configure an Agent to Use startimp.fcc

Configure an Agent Type

Configure an Anonymous Authentication Scheme

Configure an Assertion for One-time Use

Configure an Authentication Context Template

Configure an Authentication Scheme to Persist Session Attributes

Configure an Authorization Identity Mapping

Configure an AuthValidate Directory Mapping

Configure an FCC Template for an Information Card Authentication Scheme

Configure an HTML Form Authentication Scheme

Configure an HTML Forms Authentication Scheme

Configure an IBM DB2 Data Source for CA SiteMinder®

Configure an IBM DB2 Policy Store

Configure an IBM DB2 Sample User Directory

Configure an ICAS Properties File

Configure an IdP-to-SP Partnership to Support Negative Authentication Response

Configure an Impersonation Authentication Scheme

Configure an International CA SiteMinder® Data Store in Oracle

Configure an International CA SiteMinder® Data Store in SQL Server

Configure an LDAP Administrator Store Connection

Configure an LDAP Database

Configure an ODBC Data Source

Configure an Oracle Data Source for CA SiteMinder®

Configure an Oracle iPlanet 7.0 Reverse Proxy Server

Configure an Oracle Policy Store

Configure an Oracle Sample User Directory

Configure an Oracle User Directory Connection Over SSL

Configure an RDB Administrator Store Connection

Configure an smauthetsso Custom Authentication Scheme

Configure an smetssocookie Web Agent Active Response Attribute

Configure an X.509 Certificate and Basic Authentication Scheme

Configure an X.509 Certificate and HTML Forms Authentication Scheme

Configure an X.509 Certificate Authentication Scheme

Configure an X.509 Certificate or Basic Authentication Scheme

Configure an X.509 Certificate or HTML Forms Authentication Scheme

Configure Anonymous LDAP Access on Novell eDirectory

Configure Apache-based Agents for FCC-based Password Services in Japanese Environments

Configure Artifact SSO at the IdP

Configure Artifact SSO at the SP

Configure Assertion Attributes for WS-Federation

Configure Assertion Options

Configure Assertions for One-time Use

Configure Attribute Mapping at the Relying Party

Configure Attribute-based Delegation

Configure Attributes at the Attribute Authority

Configure Attributes for Assertions (optional)

Configure Attributes for SAML 1.x Assertions

Configure Attributes for WS-Federation Assertions (optional)

Configure Attributes to Include in SAML 1.x Assertions (Optional)

Configure AuthContext Responses for the Back-end Policy Domain

Configure Authentication Context Processing at the IdP

Configure Authentication Context Requests at the SP

Configure Authentication Schemes to Verify User Identities Obtained from Web Service Requests

Configure Auto Startup

Configure Automatic Logon for Internet Explorer

Configure Autosweep to Run Every 24 Hours Using XPSConfig

Configure Basic FCC Operation

Configure CA DataMinder Content Classifications in Applications

Configure CA Directory User Directory Connections

Configure CA LDAP Server for z/OS User Directory Connections

Configure CA SiteMinder® Agent to Policy Server Connection Lifetime

Configure CA SiteMinder® as a SAML 1.x Consumer

Configure CA SiteMinder® as a SAML 1.x Producer

Configure CA SiteMinder® as a SAML 2.0 Identity Provider

Configure CA SiteMinder® as a SAML 2.0 Service Provider

Configure CA SiteMinder® as a WS-Federation Account Partner

Configure CA SiteMinder® as a WS-Federation Resource Partner

Configure CA SiteMinder® Data Stores Supporting International Characters

Configure CA SiteMinder® SPS

Configure CA SiteMinder® Web Services Security to Generate SAML Assertions

Configure CA SiteMinder® Web Services Security to Perform Encryption and Decryption of WS-Security Documents

Configure Certificate Data Store Logging

Configure Certificate Revocation List Checking

Configure Claims Transformation at the Asserting Party

Configure Clusters

Configure Comprehensive Log Out using FCC Forms

Configure Confidence Levels in Applications

Configure Credential Collectors in a Mixed Environment

Configure Custom Directory Connections

Configure Data Storage Options Overview

Configure Data Updates

Configure Digital Signing and Verification

Configure Disambiguation Locally as Part of the Authentication Scheme

Configure Domino Directory Connections

Configure Domino-Specific Agent Functions

Configure Dynamic Account Linking at the SP

Configure ECP at the Identity Provider

Configure ECP at the Service Provider

Configure Enhanced LDAP Referral Handling

Configure Failover

Configure Failover Between OCSP and CRLs

Configure Federation Web Services (Asserting Party)

Configure Federation Web Services at the Relying Party

Configure Full Logoff

Configure Full Logoff Support for Domino Agents

Configure FWS Trace Logging

Configure General Information for the Resource Partner Object

Configure General Information for the Service Provider Object

Configure General WebSphere Settings

Configure HTML Forms Authentication Template Files

Configure HTTP Headers to Pass Assertion Data (SAML only)

Configure HTTP-POST for Single Sign-on at the SP

Configure IBM Directory Server User Directory Connections

Configure ICAS Command Chains

Configure Identity Provider Discovery at the IdP

Configure Identity Provider Discovery at the SP

Configure Indexed Endpoints for the Assertion Consumer Service

Configure IP Address Restrictions for Resource Partners (optional)

Configure IP Address Restrictions for SAML 1.x Consumers (optional)

Configure IP Address Restrictions for Service Providers (optional)

Configure IP Address Validation

Configure JBoss to Work with the SiteMinder Agent

Configure Kerberos at the Domain Controller

Configure Kerberos Authentication at the Policy Server

Configure Kerberos Authentication at the Windows Workstation

Configure Kerberos External Realm on Windows Host

Configure LDAP as a WebSphere User Registry

Configure LDAP Failover

Configure LDAP Storage Options

Configure Limit to Number of Records Returned by a SQL Query

Configure Load Balancing

Configure Load Balancing and Failover

Configure Logging on JBoss 6.x

Configure Message-based Authorization Using an XPath Query in XmlToolkit.properties

Configure NetWare

Configure Novell eDirectory LDAP Directory Connections

Configure OCSP Checking

Configure OCSP Request Signing

Configure ODBC Data Source Failover

Configure ODBC Directory Connections

Configure ODBC Failover

Configure ODBC Registry Settings for Timeout

Configure ODBC Storage Options

Configure OneView Monitor Settings

Configure OpenLDAP Directory Server User Directory Connections

Configure Oracle Directory Server Enterprise Edition User Directory Connections

Configure Oracle Internet Directory Connections

Configure Password Composition

Configure Password Expiration

Configure Password Restrictions

Configure Periodic Key Rollover

Configure Policies for Back-end Credential Selection

Configure Policies for Domino

Configure Policies for Impersonation

Configure Policies for the SiteMinder WSS Agent

Configure Policy Server Administration Settings

Configure Policy Server Clusters for a Host Configuration Object

Configure Policy Server Connection Options

Configure Policy Server Performance Settings

Configure Policy Server Registry Entries for ACF2

Configure Policy Server Registry Entries for RACF

Configure Policy Server Registry Entries for TSS

Configure Policy Server Settings

Configure Policy Store Indexing on Windows

Configure POST Preservation

Configure POST Single Sign-on at the IdP

Configure Profiler Trace File Retention Policy

Configure RADIUS Settings

Configure Realms for the Back-end Policy Domain

Configure Red Hat Directory Server User Directory Connnections

Configure Registry Keys for a LanMan Directory Connection

Configure Regular Expression Matching

Configure Request Processing with a Proxy Server

Configure Request Processing with a Proxy Server at the SP

Configure Required Parameters in the APS.cfg File

Configure Response Attribute Caching

Configure Response Attributes

Configure Responses for the Sample Application

Configure SAML 1.x Artifact Authentication

Configure SAML 1.x POST Profile Authentication

Configure SAML 2.0 Affiliations

Configure SAML 2.0 Artifact Single Sign-on

Configure SAML 2.0 Service Providers

Configure SecureID Authentication with FCC Password Services

Configure SecureUrls with Single Sign-on

Configure Security Policies for the Proxy Server Web Agent

Configure Security Policies Using Domain-based Policy Management

Configure Security Zones

Configure Signature Processing at the IdP

Configure Signature Processing at the SP

Configure Signout for WS-Federation

Configure Single Logout

Configure Single Logout (optional)

Configure Single Logout at the IdP

Configure Single Logout at the SP

Configure Single Sign-on at the SP

Configure Single Sign-On Between the Federation System and an Identity Provider

Configure Single Sign-on for SAML 2.0

Configure Single Sign-on for WS-Federation

Configure Single Sign-On from CA SSO Client to SiteMinder

Configure Single Sign-On from CA SSO to SiteMinder

Configure Single Sign-On from SiteMinder to CA SSO

Configure SiteMinder Agent Authenticators

Configure SiteMinder Agent Authenticators For All Web Applications on JBoss 5.x

Configure SiteMinder Agent Logging

Configure SiteMinder Agent Logging on JBoss 5.x

Configure SiteMinder Agent XML Message Processing Logging on JBoss 5.x

Configure SiteMinder Policies to Protect Web Applications

Configure SiteMinder to Always Return RADIUS Attributes

Configure snmptrap.conf

Configure snmptrap.config

Configure Social Sign-on

Configure SSL on UNIX

Configure SSL on Windows

Configure Support for Large LDAP Policy Stores

Configure Support for Multiple Value User Attribute Results When Processing User Context Variables

Configure Support for SDK Third-Party Cookies

Configure Support for the ICAM White List

Configure Text File Storage Options

Configure the Accessibility Mode for the Administrator

Configure the Agent Type Attributes Properties and Values

Configure the AMAssertionGenerator.properties File

Configure the Assertion Generator Plug-in in the UI

Configure the Authentication Scheme that Protects the Artifact Service

Configure the Back Channel for HTTP-Artifact SSO

Configure the Backchannel for the Attribute Query

Configure the CA SiteMinder® Agent as a Global Module

Configure the CA SiteMinder® Event Manager

Configure the Certificate Data Store for ICAS

Configure the CGI Directory and CGI URL Path Settings on Windows Operating Environments (Optional)

Configure the Client Certificate Option for the Back Channel

Configure the Connection to the Administrative UI

Configure the Connection to the Policy Server

Configure the Customer Role

Configure the DB2 Wire Protocol Driver

Configure the Domino Web Agent

Configure the FCC to Allow Windows Authentication

Configure the FCC to Use a Single Resource Target

Configure the Form Cache

Configure the Front-end Authentication Scheme

Configure the FWS Properties File

Configure the FWS Properties File at the IdP

Configure the HTTP-Artifact Back Channel

Configure the IdP Partner

Configure the IIS Web Server to use SSL

Configure the Java Runtime Environment (JRE) for ICAS

Configure the JVM to Use the JSafeJCE Security Provider

Configure the Key Store or Audit Logs to Use the Policy Store Database

Configure the Max Failures Parameter

Configure the NameID for the Attribute Query

Configure the Netscape Web Server to use SSL

Configure the new version of the agent on your web server

Configure the OAuth Authentication Scheme

Configure the OneView Monitor

Configure the OpenID Authentication Scheme

Configure the Oracle Wire Protocol Driver

Configure the Oracle Wire Protocol Driver for Oracle RAC without SCAN

Configure the Override Max Failure for Realm OIDs Parameter

Configure the Partnership Entities

Configure the Partnership for Attribute Query Support

Configure the Policy Server Executives

Configure the Policy Server Heartbeat Interval

Configure the Policy Server Logs

Configure the Policy Server Management Console

Configure the Policy Server Profiler

Configure the Policy Store Database

Configure the Realm Based Max Failures Parameter

Configure the Required "user" Mapping

Configure the Rule for the Single Target Realm

Configure the SAML 1.x Assertion Generator Properties File

Configure the SAML 2.0 Attribute Authority

Configure the SAML 2.0 Authentication Scheme at the SP

Configure the SAML 2.0 Name ID Management Profile

Configure the Security Policy for the Shopping Application

Configure the selectlogin.fcc File for Front-End Authentication

Configure the Service Provider

Configure the Session Store

Configure the Session Store Timeout for Heavy Load Conditions

Configure the Single Target Realm

Configure the SiteMinder Agent

Configure the SiteMinder Agent as a Per-Application Dependency

Configure the SiteMinder Agent Authenticator for Applications on JBoss 6.x

Configure the SiteMinder Agent Security Interceptor to Protect Web Applications on JBoss 5.x

Configure the SiteMinder Agent Security Interceptor to Protect Web Applications on JBoss 6.x

Configure the SiteMinder WSS Agent

Configure the SiteMinder WSS Agent Login Module in WebSphere

Configure the SiteMinder WSS Agent to Process Large XML Messages

Configure the SNMP Agent on UNIX Systems

Configure the SNMP Agent on Windows

Configure the SP Partner

Configure the SQL Server Wire Protocol Driver

Configure the UNIX Executive

Configure the User Directory

Configure the User Directory Connection for SSL

Configure the Username and Password Digest Token Age Restriction

Configure the Web Agent

Configure the Web Agent ACO

Configure the Web Agent to Check For Cross Site-Scripting

Configure the Web Agent to set the REMOTE_USER Variable

Configure the Web Application to Handle a Custom Response

Configure the Web Server with the Web Agent Option Pack

Configure the Web Service Variable Resolver

Configure the WebLogic Reverse Proxy Plug-in

Configure the Windows Authentication Scheme for Challenge/Response Authentication

Configure the WSS Agent JAX-RPC HTTP Handler for a Single Web Service

Configure the WSS Agent JAX-RPC HTTP Handler for all JAX-RPC HTTP Web Services

Configure the WSS Agent JAX-RPC HTTP Handler to Protect Web Services in JBoss 6.x

Configure the WSS Agent JAX-WS Handler for a Single JAX-WS JMS Web Service

Configure the WSS Agent JAX-WS Handler for a Single JAX-WS JMS Web Service on JBoss 6.x

Configure the WSS Agent JAX-WS HTTP Handler for a Single JAX-WS HTTP Web Service

Configure the WSS Agent JAX-WS HTTP Handler for all JAX-WS HTTP Web Services

Configure the WSS Agent JAX-WS HTTP Handler to Protect all JAX-WS HTTP Web Services on JBoss 6.x

Configure the WSS Agent JAX-WS JMS Handler for all JAX-WS JMS Web Services

Configure the WSS Agent JAX-WS JMS Handler for all JAX-WS JMS Web Services on JBoss 6.x

Configure the WSS Agent Login Module

Configure the WSS Agent Security Interceptor to Protect Web Services on JBoss 5.x

Configure the WSS Agent Security Interceptor to Protect Web Services on JBoss 6.x

Configure the WS-Security Authentication Scheme

Configure the XML DCC Authentication Scheme

Configure the XML DSIG Authentication Scheme

Configure Time Restrictions for Resource Partner Availability (optional)

Configure Time Restrictions for SAML 1.x Consumers (optional)

Configure Time Restrictions for Service Provider Availability (optional)

Configure Trace Logging

Configure Trusted Host Shared Secret Rollover

Configure User Identification at the Relying Party

Configure Values to be Used in the Sample Application

Configure Virtual Servers

Configure Web Agents Centrally

Configure Web Agents Locally

Configure Web Applications to Invoke the SiteMinder Agent Security Interceptor

Configure Web Services to Invoke the SiteMinder WSS Agent JAX-RPC Handler

Configure WebSphere to Work with the SiteMinder WSS Agent

Configure Windows Executives

Configure WS-Federation Single Sign-on at the Resource Partner

Configure WSS Agent Security Interceptor Protection for JAX-RPC Web Services Over HTTP Transport

Configure WSS Agent Security Interceptor Protection for JAX-WS Web Services Over HTTP Transport

Configure WSS Agent Security Interceptor Protection for JAX-WS Web Services Over JMS Transport

Configure WSS Agent Security Interceptor Protection for JAX-WS Web Services Over JMS Transport on JBoss 6.x

Configure XML Message Processing Logging

Configure Your CA SiteMinder® Environment for Enhanced Session Assurance with DeviceDNA™

Configure your CA SiteMinder® SPS Environment for Enhanced Session Assurance with DeviceDNA™

Configure Your Test Environment Agent

Configure your Upgraded Agent on UNIX/Linux

Configure your Upgraded Agent on Windows

Configure your Web Agent to Accommodate P3P Compact Policies

Configuring Administrative Journal and Event Handler

Configuring and Managing Encryption Keys

Configuring as a Wedge

Configuring CA SiteMinder® Data Stores in a Relational Database

Configuring Custom Agent Types

Configuring for FPS

Configuring General Policy Server Settings

Configuring LDAP Directory Servers to Store CA SiteMinder® Data

Configuring Policy Server Data Storage Options

Configuring Policy Server Logging

Configuring Port Numbers

Configuring SiteMinder Agent to Policy Server Communication Using a Hardware Load Balancer

Configuring the OneView Monitor

Configuring the Policy Server for an International Environment

Configuring the Policy Server for the Event Handler

Configuring the Policy Server Profiler

Confirm Pages

Confirm that Required Components are Installed

Confirm the Authentication Mode and URL for SSO

Confirm the Entity Configuration

Confirm the IdP-to-SP Partnership Settings

Confirm the SP Partner Settings

Connect a SiteMinder WSS Agent to a Dynamic Policy Server Cluster

Connect a Web Agent to a Dynamic Policy Server Cluster

Connect Method—Establishes Connection between Agent API and Policy Server

Connection API Configuration File

Connection Between PS on UNIX and SQL Server

Connection Class

Connection to a Policy Server

Connectivity Problems

Connectivity Requirements

Considerations for Existing LDAP User Directory Connections Over SSL

Considerations for Localized Installations

Considerations for Upgrading r6.x to r12.x

Considerations for Web Agents and Policy Servers in Different Time Zones

Consistent Use of CONSUMERID or NAME in an Intersite Transfer URL Required (169724)

Console Mode not Supported on Windows Operating Environments (CQ143654, 152120)

Constant

Constant Use Case

Constants Missing from Java Policy Management API (13348)

Construct Attribute Mapping Rules Using the Proper Syntax

ConsumerURL Method—Sets or Retrieves a URL

Contact CA Technologies

Containment Operators

Contains Method—Determines whether the Group Contains the Specified Agent, Response, Rule, or Nested Group Object

Contents of the Open Format Cookie

Control Access to Lotus Notes Documents

Control How HTTP Header Resources are Cached

Control How Long Resource Enteries Remain Cached

Control Identity Cookies

Control IIS 7.x Module Execution Order when using the CA SiteMinder® Agent for IIS

Controlling Frequency of Use

Conventions in the Installation Overview Procedures

Convert Notes Document Names

ConvertFromLegacy Method—Converts a v4.x Agent to a v5.x Agent

ConvertToLegacy Method—Converts a v5.x Agent to a v4.x Agent

Cookie Delegated Authentication Sample Setup

Cookie Domain Mismatch Errors

Cookie Issue: HttpOnly Flag Not Set [161680]

Cookie Method for Passing User Identity

Cookie Providers and the Web Application Client Response

Coordinate Agent Key Management and Session Timeouts

Copy a Host Configuration Object

Copy an Agent Configuration Object

Copy cryptojFIPS.jar to the WebSphere JRE

Copy the Modified JavaScript Code to Your Logout Page

Copy Web Agent Option Pack Libraries to WebSphere

Core Methods in the Result Class

COUNT Function--Count the Elements in a Set

Cracking Passwords

Create a Client Application to Interact with the Name Identifier Web Service

Create a Client Name and Passphrase

Create a Condition Containing a Function

Create a Condition Containing an Operation

Create a Constant Attribute Mapping

Create a Custom Agent Object for the Agent Identity

Create a Custom Authentication Scheme

Create a Custom Authentication Scheme Library

Create a Custom SAML 2.0 Authentication Scheme (optional)

Create a Custom WS-Federation Authentication Scheme

Create a DB2 Data Source on UNIX Systems

Create a DB2 Data Source on Windows Systems

Create a Directory Entry and Root Nodes

Create a DSA for the Policy Store

Create a DSA for the Session Store

Create a Federation Attribute Variable

Create a Form Post Variable

Create a Global Rule for Authentication Events

Create a Global Rule for Authorization Events

Create a Group Name Attribute Mapping

Create a Host Configuration Object

Create a Legacy Administrator

Create a Local Entity

Create a Local OAuth Client Entity

Create a Manager Role

Create a Mask Attribute Mapping

Create a module.xml File

Create a MySQL Data Source on UNIX Systems

Create a MySQL Data Source on Windows

Create a New UNIX Account

Create a Novell eDirectory User Account for SiteMinder Administration

Create a Partnership to Configure Single Sign-On

Create a Policy Expression with the Federation Attribute Variable

Create a Policy to Implement Attributes as HTTP Headers

Create a Policy to Protect the Authentication URL

Create a Policy Using the Single Target Realm

Create a Protection Policy

Create a Realm

Create a Realm and a Rule for the Authentication URL Policy

Create a Request Context Variable

Create a Rule Group

Create a SAML Assertion Variable

Create a SQL Server Data Source on Windows

Create a SQL Server Data Sources on UNIX Systems

Create a Static Variable

Create a Superuser Administrator for the DSA

Create a Target Resource

Create a Transport Variable

Create a User Context Variable

Create a User Identifier by Enabling Allow/Create

Create a User Store

Create a Variable

Create a Web Agent Response that Generates an Open Format Cookie

Create a Web Page to Initiate Single Sign-on

Create a Web page to Initiate Single Sign-on (Artifact)

Create a Web Services Variable

Create a WebAgent.conf File

Create a WebLogic Application Server Instance

Create a Workspace

Create Additional Roles to Define User Access Rights

Create Agent Objects

Create an XML Envelope Header Variable

Create an Administrator

Create an Administrator and Assign a Workspace

Create an Agent Configuration Object

Create an Agent Object to Establish a Web Agent Identity

Create an Alias Attribute Mapping

Create an Application Object for the Web Services That You Want to Protect

Create an Authentication Context Policy

Create an Authentication Method Group

Create an Authentication Scheme

Create an Authorization Rule to Validate Users

Create an Employee Role

Create an Expression Attribute Mapping

Create an Instance of ICAS

Create an Object

Create an OCSP Configuration File

Create an Oracle 10g Table Space for the Policy Store

Create an Oracle Data Source on UNIX Systems

Create an Oracle Data Source on Windows

Create an Oracle RAC (no SCAN) Data Source on Windows

Create an Oracle RAC SCAN Data Source on Windows

Create an Oracle Virtual Directory Adapter to Connect to Existing Policy Store

Create an Organizational Unit for an OID Directory

Create an SmHost.conf File

Create an XML Agent Variable

Create an XML Body Variable

Create and Configure the Virtual Directory for Windows Authentication Schemes (IIS 7.5)

Create and Manage System Objects

Create Attributes for Agent Types

Create Authentication Schemes for the Single Target Realm

Create Custom Certificate Mappings

Create Enhanced Session Assurance with DeviceDNA™ end points

Create Links to Initiate Single Sign-on (optional)

Create Links to Target Resources (optional)

Create or Modify the Remote Entity of an Authorization Server

Create Partnership Drop-down Not Displaying Properly (176737)

Create Password Policies

Create Responses and Response Attributes

Create Roles That Identify the Users That Can Access the Protected Resources

Create Rules for Domino Server Resources

Create Rules for the Back-end Policy Domain

Create the 12.52 Environment

Create the Administrator Account

Create the Application Object and Define the General Properties of Your Security Policy

Create the Audit Log Schema

Create the Audit Store Schema

Create the Authentication Scheme

Create the Base Tree Structure

Create the Base Tree Structure for Policy Store Data

Create the CA SiteMinder® Schema

Create the Certificate Database Files

Create the Custom Authentication Scheme

Create the FIPS Environment Variable

Create the Global Policy

Create the Human Resources Role

Create the IdP-to-SP Partnership

Create the IgnoreADpwdLastSet registry key

Create the Key Store Schema

Create the Legacy Administrator Record

Create the MySQL Wire Protocol Driver

Create the Policy

Create the Policy Domain

Create the Policy Store Schema

Create the Policy to Protect the Retrieval Service

Create the Session Store Schema

Create the SP-to-IdP Partnership

Create the Web Portal Policy

Create the Web Portal Resources

Create the Web Portal Roles

Create Two Policy Domains

CreateAdmin Method—Creates System-Level Administrator

CreateAffDomain Method—Creates Affiliate Domain

CreateAffiliate Method—Creates an Affiliate Object

CreateAgent Method—Creates SiteMinder Agent

CreateAgentConfig Method—Creates Agent Configuration Object

CreateAgentGroup Method—Creates Agent Group

CreateAttribute Method—Creates a Static Response Attribute for the Response

CreateAuthAzMap Method—Creates Directory Mapping Object

CreateAuthScheme Method—Creates Authentication Scheme

CreateBootstrapFile Method—Generates Bootstrap File for Connecting to Agent

CreateChildRealm Method—Creates and Configures a Child Realm

CreateCustomCertMap Method—Creates Custom Certificate Map

CreateDomain Method—Creates Policy Domain Object

CreateExactCertMap Method—Creates Certificate Map Matching User Directory Attributes

CreateGlobalPolicy Method—Creates Global Policy

CreateGlobalResponse Method—Creates Global Response

CreateGlobalResponseGroup Method--Creates a Domain-Specific Rule Group

CreateGlobalRule Method—Creates Global Rule

CreateGlobalRuleGroup Method--Creates a Domain-Specific Rule Group

CreateHostConfig Method—Creates Host Configuration Object

CreateIPConfigHostName Method—Creates an IP Configuration Object for the Service Provider

CreateIPConfigHostName Method—Creates Object Based on Specified Host

CreateIPConfigRange Method—Creates an IP Address Configuration

CreateIPConfigRange Method—Creates an IP Configuration Object

CreateIPConfigRange Method—Creates an IP Configuration Object for the Service Provider

CreateIPConfigSingleHost Method—Creates an IP Address Configuration

CreateIPConfigSingleHost Method—Creates an IP Configuration Object for the Service Provider

CreateIPConfigSingleHost Method—Creates an IP Configuration Object from the Specified IP Address

CreateIPConfigSingleHost Method—Creates Object Based on Single Address

CreateIPConfigSubnetMask Method—Creates an IP Address Configuration Based on the IP Address and Subnet Mask

CreateIPConfigSubnetMask Method—Creates an IP Configuration Object

CreateIPConfigSubnetMask Method—Creates an IP Configuration Object for the Service Provider

CreateIPConfigSubnetMask Method—Creates Object Based on Subnet Address

CreateIPHostConfigName Method—Creates an IP Address Configuration

CreateIPHostConfigName Method—Creates an IP Configuration Object from the Specified Host Name

CreateODBCQueryScheme Method—Creates ODBC Query Scheme

CreatePolicy Method—Creates and Configures a Policy in the Domain

CreatePwdPolicy Method—Creates Password Policy

CreateRealm Method—Creates and Configures a Top-level Realm in the Domain

CreateRegScheme Method—Creates Registration Scheme

CreateResponse Method—Creates a Response

CreateResponseGroup Method—Creates a Response Group for the Domain

CreateRule Method—Creates and Configures a Rule under the Realm

CreateRuleGroup Method—Creates a Rule Group for the Domain

CreateSAMLAffiliation Method—Creates SAML 2.0 Affiliation Object

CreateSAMLAuthScheme Method—Creates SAML Authentication Scheme Object

CreateSAMLServiceProvider Method—Creates a SAML Service Provider

CreateSession Method—Creates a Policy Server Session

CreateSingleCertMap Method—Creates Single-Attribute Certificate Map

CreateSSOToken Method—Creates Single Sign-on Token Object

CreateTrustedHost Method—Creates Trusted Host Object

CreateUser Method—Creates a User Object

CreateUserDir Method—Creates User Directory Object

CreateWSFEDAuthScheme Method—Creates WS-Federation Authentication Scheme

CreateWSFEDResourcePartner Method—Creates a WS-Federation Resource Partner

Creating a Legacy Federation Configuration in the Partnership Model

Creating Affiliate Domains

Creating Links to Consumer Resources for Single Sign-on

Credentials Selector Introduction

Credentials Selector Solution for the Use Case

Credentials Selector Use Case

CRL Distribution Points to Locate CRLs

CRL Signature Verification

CRLUserDirectory Method—Sets or Retrieves the LDAP Directory where the Certificate Revocation List (CRL) Is Located

Crypto Algorithm

Crystal Reports in 12.x

Cursor Class

Custom Agent Requirements

Custom Agent Type Overview

Custom Agents

Custom Agents and Single Sign-On

Custom Agents and SiteMinder 12.52

Custom Applications and Policy Server Extensions

Custom Attribute Mappings for Testing

Custom Authentication Scheme Library Writing and Installation

Custom Authentication Schemes

Custom Certificate Mapping for Multiple Attributes of the Same Type

Custom Classes for Authentication and Authorization

Custom Data Hook

Custom Directory Overview

Custom Error Handling For Applications

Custom Error Pages not Appearing

Custom Extensions

Custom Extensions (SmAPSEx)

Custom Forms

Custom Logging

Custom Logging Extension (SmAPSLog)

Custom Mapping Expressions

Custom Mapping: Example 1

Custom Mapping: Example 2

Custom Mapping: Example 3

Custom Scheme Prerequisites

Custom Server–Side Code Requirements

Custom SiteMinder WSS Agent

Custom Template

Custom X-MAIL Headers

CustomData Method—Sets or Retrieves Custom Authentication Data

Customization Options

Customization Required for Supporting Internationalization

Customization without Custom Forms

Customize a SAML Assertion Response (optional)

Customize a User Consent Form

Customize Assertion Content

Customize Assertion Processing (Relying Party)

Customize Assertion Processing with the Message Consumer Plug-in

Customize CA SiteMinder® to Support a New Locale

Customize Forms Authentication Templates

Customize the Application with a Response

Customize the Assertion with Attributes from a Web Application

Customize the Cache-Control and ExpireForProxy Header Settings

Customize the Header and Footer on the Credential Selector Page

Customize the OpenID Forms Credential Collector

Customize the POST Preservation Page

Customize the Session Duration in the Assertion

Customize Your Applications Using the Samples as Guides

Customized Password Change Messages

Customizing a SAML Assertion

Customizing the Form

Customizing the Look and Feel

Customizing the Policy Server

CustomLib Method—Sets or Retrieves the Name of the Shared Library

CustomParam Method—Sets or Retrieves Information that Is Passed to the Authentication Scheme

CustomSecret Method—Sets or Retrieves the Shared Secret for the Custom Authentication Scheme

Daily Processing (APSExpire)

Data Stores

Data Tier Guidelines

Data Tier Performance

Data Types

Data Types and Structures

Date Format

DATE Function--Convert Year, Month, Day, Hours, Minutes, and Seconds (form 2)

DATE Function--Set to Midnight (form 1)

Date in Activity-By-User Report Incorrect [153070]

DATEFROMSTRING Function--Convert String to Number

DATETOSTRING Function--Convert Number to String

DAY Function--Return Day of Month

Dead Lock Condition in the LDAP Authentication Layer (162301)

DEBUG Logging With SafeWord Authentication Causes Policy Server to Fail (42222, 43051)

Debugging Features

Decode Method—Decodes a Single Sign-on Token

Decode Query Data in a URL

Decoding SSO Token Degrades Performance (159533)

decryptionkeyalias Option Missing for the smfedexport Tool (178702)

Default Log File does not Provide Enough Information

Default Policy Store Objects Consideration

Default Properties Files

Default Revocation Grace Period

Default Settings of Web Agent Configuration Parameters

Default Superuser Administrator

Default Values of ACO Parameters in Web Agent Configuration Guide Unclear (155294)

Defects Fixed in 12.5

Defects Fixed in 12.51

Defects Fixed in 12.52

Defects Fixed in r12.1 as of CR1

Defects Fixed in r12.1 SP3

Defects Fixed in SOA Security Manager Releases

Define

Define a JBossSX Security Domain for the SiteMinder Agent Login Module

Define a JBossSX Security Domain for the SiteMinder Agent Login Module on JBoss 6.x

Define a Local IP Entity for an Office 365 Partnership

Define a Remote RP Entity for an Office 365 Partnership

Define a Response Specifying the Negative Authentication Response Attribute

Define a User Class

Define a Virtual User Attribute

Define Access Control Requirements

Define Active Policies

Define Active Responses

Define Active Rules

Define Agents for a Heterogeneous Two Directory Environment

Define Agents for a Heterogeneous, Single Directory Environment

Define an Attribute Mapping

Define HTTPS Ports

Define Implementation Requirements

Define Indexed Endpoints for Different Single Sign-on Bindings

Define Macros

Define Multiple Instances of an Attribute

Define Named Expressions

Define Named Expressions to Check the Credit Limit

Define Task-Assessment Requirements

Define the Configuration Modes Order of Precedence

Define the Default FIPS Mode By Setting the CA_SM_PS_FIPS140 Environment Variable

Define the Same User Directory Connection in Multiple Policy Stores

Define the Security Policy for a Web Application in an Application Object

Define Valid Federation Target Domains

Define Valid Target Domains

Defining Macro Substitutions

Delegate Administrative UI Permissions

Delegated Authentication

Delegated Authentication Configuration

Delegated Authentication Overview

Delegated Authentication Using the Open Format Cookie

Delegated Management Services (DMS2)

Delegated Management Services (DMS2) Interface

Delegated Management Services API

Delete a Certificate

Delete a Claim from an Assertion

Delete a Condition from an Expression

Delete a Domain

Delete a Global Rule

Delete a Policy

Delete a Policy Server Connection

Delete a Policy Server Object

Delete a Realm

Delete a Report Server Connection to the Administrative UI

Delete a Response

Delete a Response Group

Delete a Rule

Delete a Rule Group

Delete an Administrative UI Connection to the Policy Server

Delete CA SiteMinder® Reports

Delete Certificates from Stronghold (Apache Agent Only)

Delete Login History

Delete Objects from the Policy Store

Delete Recurring Tasks

Delete Revocation Information

Delete SiteMinder Data in ODBC Databases

Delete the Administrative UI Data Directory

Delete the Previous Trusted Host

Delete Trusted Host Objects

DeleteAdmin Method—Deletes Administrator

DeleteAffDomain Method—Deletes Affiliate Domain

DeleteAffiliate Method—Deletes an Affiliate from a Domain

DeleteAgent Method—Deletes Agent

DeleteAgentConfig Method—Deletes Agent Configuration Object

DeleteAttribute Method—Deletes a Response Attribute in the Response

DeleteAuthAzMap Method—Deletes Authentication and Authorization Map

DeleteAuthScheme Method—Deletes Authentication Scheme

DeleteCertMap Method—Deletes Certificate Map

DeleteChildRealm Method—Deletes a Top-level Realm within the Realm

DeleteDomain Method—Deletes Policy Domain

DeleteGlobalPolicy Method—Deletes Global Policy

DeleteGlobalResponse Method—Deletes Global Response

DeleteGlobalRule Method—Deletes Global Rule

DeleteGroup Method—Deletes a Group from the Domain

DeleteGroup Method—Deletes Agent Group

DeleteHostConfig Method—Deletes Host Configuration Object

DeleteIPConfig Method—Deletes an IP Configuration Object

DeleteIPConfig Method—Deletes Specified IP Configuration Object

DeleteIPConfig Method—Deletes the Specified IP Configuration Object

DeleteODBCQueryScheme Method—Deletes ODBC Query Scheme

DeletePolicy Method—Deletes a Policy

DeletePwdPolicy Method—Deletes Password Policy

DeleteRealm Method—Deletes a Realm in the Domain

DeleteRegScheme Method—Deletes Registration Scheme

DeleteResponse Method—Deletes a Response

DeleteRule Method—Deletes an Existing Rule within the Realm

DeleteSAMLAffiliation Method—Deletes SAML Affiliation

DeleteSAMLServiceProvider Method—Deletes a SAML Service Provider

DeleteTrustedHost Method—Deletes Trusted Host

DeleteUserDir Method—Deletes User Directory

DeleteWSFEDResourcePartner Method—Deletes a Resource Partner

Delivery of Assertion Data to the Provisioning Application

Delivery Problems

DelVariables Method—Deletes Session Variables from Session Store

DEP Error during Policy Server Installation

Dependencies

Deploy a Federation Web Services WAR File in WebSphere

Deploy a JDBC Data Source

Deploy a Message Consumer Plug-in

Deploy an Assertion Generator Plug-in

Deploy an FWS WAR File in JBoss or Tomcat

Deploy an XML-Enabled Java Agent

Deploy Federation Web Services as a Web Application

Deploy Federation Web Services for Federation

Deploy Legacy Federation Using a Manual Configuration

Deploy Legacy Federation Using the Sample Application

Deploy SiteMinder in a RADIUS Environment

Deploy STS

Deploy the Assertion Generator Plug-in

Deploy the FWS Application on WebLogic

Deploying CA SiteMinder® Components

Deploying Federation Web Services in JBOSS 5.1.x (150603)

Deployment of Federation Web Services Fails on JBoss 6.1 (174757)

Deployments that Favor Federation

Deployments that Favor Web Access Management

Deprecated CA SiteMinder® Key Tool Options

Description Method—Retrieves or Sets a Description

Description Method—Sets or Retrieves Description of User Directory

Description Method—Sets or Retrieves the Agent Description

Description Method—Sets or Retrieves the Description of an Administrator

Description Method—Sets or Retrieves the Description of an Affiliate Object

Description Method—Sets or Retrieves the Description of the Agent Configuration Object

Description Method—Sets or Retrieves the Description of the Authentication Scheme

Description Method—Sets or Retrieves the Description of the Certificate Map

Description Method—Sets or Retrieves the Description of the Domain

Description Method—Sets or Retrieves the Description of the Group Object

Description Method—Sets or Retrieves the Description of the Host Configuration Object

Description Method—Sets or Retrieves the Description of the ODBC Query Scheme

Description Method—Sets or Retrieves the Description of the Password Policy

Description Method—Sets or Retrieves the Description of the Policy

Description Method—Sets or Retrieves the Description of the Realm

Description Method—Sets or Retrieves the Description of the Rule

Description Method—Sets or Retrieves the Registration Scheme Description

Description Method—Sets or Retrieves the Response Description

Designate the Application Resources

Designate the Resource Requiring Protection

Detailed Local Entity Configuration

Detailed Remote Entity Configuration

Details

Determine Authentication Context and Strength Levels with your Partner

Determine Digital Signing Options

Determine how a User Authenticated at an Identity Provider

Determine how to Manage Policy Servers

Determine how to Manage SiteMinder WSS Agents

Determine how to Manage Web Agents

Determine if Advanced Encryption Standards are Required

Determine if Partnerships Require CA SiteMinder® Federation

Determine if Virtualization is to be Used

Determine SSL Connection Ability

Determine the Content of the Trace Log

Determine the IANA Code for Your Language

Determine the Number of Users Associated with CA SiteMinder® Policies

Determine the Upgrade Path

Determine when the Agent for IIS Sets Cookies

Determine which Session Attributes are Available

Develop a Custom Tunnel Service

Development and Deployment Notes

Diagnose Agent Start-Up/Shutdown Issues (Framework Agents Only)

Diagnose Implementation Issues

Diagnose Issues Introduced

Diagnostic Information Overview

DictionaryMatch Method—Sets the Minimum Number of Letters Required To Qualify a Password for Dictionary Checking

DictionaryPath Method—Sets or Retrieves the Location of a Dictionary File

Digest Authentication Schemes

Digital Signing and Private Key Algorithms

Digital Signing Options at the Service Provider

Directives