IM Compatibility with LSASS Protection Mode

book

Article ID: 192632

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite

Issue/Introduction

LSA (Local Security Authority) is a subsystem related to Windows security. It manages user rights information and stores password hash etc. in the memory. In OS including Windows 8.1 and others, LSA Protection Mode serves to protect such information from being stolen.

The CA Identity Manager PSA (Password Sync Agent) is not compatible with the LSA Protection Mode enabled.

 

 

Cause

Enhanced functionality of the host operating system.

Environment

Release : 14.3 CP1

Component : Identity Minder(Identity Manager)

Resolution

The PSA (Password Sync Agent) has been upgraded to accommodate LSA Protected mode (LSASS) via 14.3 CP2

https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/identity-manager/14-3/Release-Notes/release-features-and-enhancement/Identity-Manager-14_3-CP2.html#concept.dita_b51ab03e-6e77-49be-8235-e50ee477247a_LSASS