|
|
|
For added security, the SiteMinder Agent Key Management dialog box enables you to manually rollover Agent keys. You can use this feature to rollover keys at any time. You can also use this feature if you want the Policy Server to generate dynamic keys, but you do not want the keys to rollover at a fixed interval.
To manually rollover dynamic keys
The SiteMinder Key Management dialog box opens.
The dialog box changes to support dynamic keys.
With Manual Key Rollover selected, when you close the SiteMinder Key Management dialog box, the Policy Server will not generate new dynamic keys and will not perform key rollover automatically.
The Policy Server immediately generates new Agent keys.
Note: There is no visible change in the dialog box. This button executes the rollover process on the Policy Server. Do not click this button multiple times unless you want to rollover keys more than once.
Web Agents pick up the new keys the next time they poll the Policy Server, which may take up to three minutes due to cache synchronization. In a situation where, for security reasons, you want to use an entirely new set of keys to ensure security, you can rollover dynamic keys twice in order remove both the old key and the current key from Agents.
Note: You can use the Rollover Now button to rollover keys between automatic rollovers if Automatic Key Rollover is selected.
| Copyright © 2011 CA. All rights reserved. | Email CA Technologies about this topic |