ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Multiple Orgs support for same Directory Server

book

Article ID: 145641

calendar_today

Updated On:

Products

CA Advanced Authentication - Strong Authentication (AuthMinder / WebFort) CA Strong Authentication CA Rapid App Security CA Risk Authentication CA Advanced Authentication

Issue/Introduction

We are using CA Directory and are defining OUs for each line of business.  The goal is to define an organization for each OU (LOB) to define specific authenticator and risk policies based on different business needs.  I was made aware there is a product limitation to support this model.  

Is this accurate?

 

 

 

Cause

Currently the product only support one LDAP/AD server with one organization only and multiple organizations can not have the same LDAP/AD server, it will throw an error saying that this configuration already exists.

Environment

Release : 9.1

Component : AuthMinder(Arcot WebFort)

Resolution

Basically the limitation is on being able to create multiple AA Organizations based on the same Directory Server - it actually lets you create only one AA Org per a combination of a Directory Server’s Hostname and a Port Number. The possibility of a second AA organization that is mentioned below, is kind of a work around to use the same Directory Server’s IP Address instead of Hostname and the Port Number. Hope that helps.

 Having multiple DNS entries / hostnames pointing at the same IP or CNAME is the possible route to take.