Policy Server Guides › Policy Design Guide › CA Arcot Integration › CA Arcot WebFort and RiskFort › Authentication in an On–Premise Arcot Integration

Authentication in an On–Premise Arcot Integration

CA Arcot assumes authentication services in an integrated environment by guiding users through the authentication (CA Arcot WebFort) and risk evaluation (CA Arcot RiskFort) processes. During the authentication process:

• CA Arcot WebFort provides the strong authentication, which helps to ensure that the identities of the users requesting the SiteMinder–protected resources are legitimate.

  Note: For more information about strong authentication, see the CA Arcot WebFort Installation and Deployment Guide. For more information about configuring the supported authentication methods, see the CA Arcot WebFort Administration Guide.

• CA Arcot RiskFort collects a range of data to complete a risk evaluation, which determines the level of risk associated with each transaction.

  Note: For more information about risk evaluation and risk scores, see the CA Arcot RiskFort Installation and Deployment Guide. For more information about configuring risk scoring, see the CA Arcot RiskFort Administration Guide.

The result of the risk evaluation is a risk score and corresponding advice, which is a recommend action, such as allow or deny the authentication.

CA Arcot forwards the advice to the Policy Server, which if necessary, continues with its authorization services.

Note: For more information about the Adapter workflow and the role of each CA Arcot component during authentication, see the CA Arcot Adapter for CA SiteMinder Installation and Configuration Guide.