MyTechReference - Technical Notes


by IDAMGroup

CA Federation Manager Installation Guide

CA Federation Manager Installation Guide. What is CA Federation Manager? A standalone product that does not require the existence of any CA Siteminder component on the target system Easy to Deploy Supports SAML1.1 and SAML2.0 Protocol Pre-requisite   Memory 1GB (minimum), 2GB recommended Disk Space 2GB minimum (900M disk space, 700M temporary file location) Browser…

Read More


by IDAMGroup

Optimizing CA Siteminder Performance

Optimizing CA Siteminder Performance Understand the Agent connectivity to Policy Server How Threading in Policy Server Works Troubleshooting methods Cache management. Understand the Agent connectivity to Policy Server  The Web Agent opens the TCP connection to the Policy Server (default:20 ) Policy Server closes the connection and has the following parameter Max Connection Idle Timeout…

Read More


by IDAMGroup

CA Siteminder Identity Mapping

CA Siteminder Authentication – Authorization Mapping In this post i am going to show you how to configure user  to Authenticate against userdiretory1  and authorize against userdirectory2. In my scenario i have created 2 user directory 1. User Directory   (  Unfortunately named as User Directory… don’t get confused) 2. NAM eDirectory Go to Infrastucture –>…

Read More


by IDAMGroup

CA Siteminder Changing the Login attribute

Changing the Login attribute to mail ID from a default CN value In this Post will show you how to change the login attribute from the default value “CN” to email address. Login to Siteminder admin console and navigate to Infrastrusture –> Directory –> “Select the User Directory” And change the  LDAP User DN  Lookup…

Read More


by IDAMGroup

CA Siteminder Single Sign-On

How to configure Single Sign-On Across Multiple Cookie Domains When user logs into Website A and while switching to website B on the same browser, they are asked to enter the user credentials which are in different cookie domain. The ability to pass single sign-on information across multiple cookie domains enables a user to authenticate…

Read More


by IDAMGroup

NetIQ IDM JDBC Driver Setup

NetIQ IDM JDBC Driver Setup In this post i am going to take you through setting up JDBC driver in Indirect Synchronization method. And i am going to do a simple setup with the following stuff Indirect Synchronization method Subscriber channel only No publisher events, so disabled the publisher channel Password sync No entitlement. You…

Read More


by IDAMGroup

Siteminder High Availability

CA Siteminder High Availability You can setup High Availability for different CA Siteminder components as shown below Basically you can do this for the below      WebServer      Policy Server      Policy Store or User Store     1. Webserver    First is Webserver is where you install the CA Siteminder Webagent. High Availability can…

Read More


by IDAMGroup

NetIQ Access Manager and IDM Backup Best Practices

Backing up NetIQ IDM and Access Manager involves different components and will be discussed below eDirectory IDM Driver UserAppliation User Application Workflow’s Access Manager eDirectory Backup Different ways to take eDirectory backup eMBox DSBK Full directory Backup If Virtual Instance: VM snaphot   eMBox The Novell® eDirectory™ Management Toolbox (eMBox) lets you access all of…

Read More


by IDAMGroup

NetIQ User Application User Creation Workflow

NetIQ User Application creating a simple user creation workflow using Designer In this Post will show you how to create a simple workflow to create user in eDirectory using the Designer Version Details User Application 4.0 Designer Version: 4.0.2 Auto Update 4a Build id: 20140107 eDirectory 8.8.8   Open your designer and create New Project  …

Read More


by IDAMGroup

CA Siteminder SSO Security Zones

SSO Security Zones Creating single sign-on security zones within the same cookie domain to represent it as multiple cookie domain. As a result, users can have single sign-on within the same zone, but may be re-challenged when entering a different zone   Cookies affected by this Security Zones SiteMinder uses state cookies to manage the…

Read More