Add a user to exception list

book

Article ID: 16341

calendar_today

Updated On:

Products

CA Rapid App Security CA Advanced Authentication CA API Gateway

Issue/Introduction

There are situations when a user is going through the Step up process for some reason, there need to be a way so we can avoid this step up authentication process while the actual problem is investigated. Exception user feature of CA Risk Authentication provides that capability.



How can we add an user to Exception User list?

Environment

Production, Pre-Production

Resolution

Below are the instructions to do that.

1 Login as Global Admin to CA Administration Console.

2. Go to Case Management tab and then Manage Inbound calls

3. Input the Organization name and User information whom you want to add in Exception user.

4. Input the parameters necessary and then go to Add User to Exception List section and choose the start date and end date.

 

The other way is using the Webservices provided to add a user to exception list and remove it from Exception list. You can get the Webservices from $ARCOT_HOME/wsdls/admin and name is ArcotRiskFortAdminWebService.wsdl.

Here is a snippet of a valid request-

<soap:Envelope xmlns:soap="http://www.w3.org/2003/05/soap-envelope" xmlns:msgs="http://ws.arcot.com/ArcotRiskFortAdminSvc/1.0/msgs">

   <soap:Header/>

   <soap:Body>

      <msgs:addUserToExceptionList>

         <msgs:userName>SRI</msgs:userName>

         <msgs:groupName>defaultorg</msgs:groupName>

         <msgs:startDate>2014-10-06-</msgs:startDate>

         <msgs:endDate>2104-10-10-</msgs:endDate>

         <msgs:reason>Moving</msgs:reason>

         <!--Optional:-->

         <msgs:callerId>?</msgs:callerId>

      </msgs:addUserToExceptionList>

   </soap:Body>

</soap:Envelope>

Additional Information

We can only add user to exception list from admin console but can not remove it.