CA EEM Getting Started › Introduction › Features

Features

CA EEM consists of the following features:

General

• Policy isolation lets each registered application instance to use its own space for storing its application-specific data
• Run-time SDK available for Java, C++, and C#
• Administrative SDK available for Java, C++, and C#
• Command line interface support for administrative functions (insert/modify/remove objects):
  • XML export and import
  • Run-time checks
  • Migration tools
• Web interface support for standalone and launch-in-context access
• Secure HTTP communications
• Integrated with CA Security Command Center and CA Audit for security event management
• Integration with CA SiteMinder to retrieve user and group information from CA SiteMinder data store

Identity Management

• Shared global users and attributes for all applications
• Support for different modes for global users
  • Internal global users, complete with password policy management
  • External global users from LDAP directory servers
  • External global users from CA Identity Manager
• Integration with CA Identity Manager for role-based user provisioning and management
• Support for portable session export and import for single sign-on

Access Management

• Access management covers both Access Control Lists (ACLs) and business policies
• Policy language allows the use of user, session, environment, and resource attributes in making policy decisions
• Built-in administrative scoping of all objects
• Built-in support for delegated administration
• Built-in support for custom obligation checks requiring application-specific actions
  • Local in-process evaluation of permission checks
  • SDK and Web interface for defining access policies, ACLs, administrative scoping policies, and delegated authority