SM & DS setup in two different zone

book

Article ID: 211738

calendar_today

Updated On:

Products

SITEMINDER CA Single Sign On Agents (SiteMinder) CA Single Sign On Secure Proxy Server (SiteMinder)

Issue/Introduction

 

When running 2 separated environments (A and B), one can ask how to
make SSO between those 2 environments, so once the user authenticated
in A, can access without rechallenge in B.

Also, are CA SiteMinder & CA directory server available as cloud
service to build the environments ?

 

Resolution

 

At first glance, this is feasible when implementing a replicated
Policy and Key Store, and also a Session Store between both DataCenter
A and B (1).

You can run CA SiteMinder & CA Directory server as Cloud Service (2)(3).

 

Additional Information

 

(1)


    Multiple Data Centers

      Each data center using its own policy store. Data center one
      contains the primary policy store. Data center two contains the
      replicated version, as the dotted line details.

      Each data center using its own primary/consumer user stores.

      A centralized replicated session store to enable single sign   on
      between all applications.

    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/implementing/implementing-siteminder/multiple-data-centers.html

(2)

    Deployment in Public Cloud Infrastructure

      You can deploy SiteMinder in cloud computing platforms such as
      Amazon Web Services (AWS) and Microsoft Azure. This section outlines
      key criteria to consider before deploying SiteMinder in cloud
      infrastructure.

    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/siteminder/12-8/implementing/implementing-siteminder/multiple-data-centers/deployment-in-public-cloud-infrastructure.html

(3)

    CA SiteMinder 12.8 on Private Cloud
    https://knowledge.broadcom.com/external/article?articleId=195229

    Is CA Directory supported on Amazon Web Services ?
    https://knowledge.broadcom.com/external/article?articleId=14952

    Set Up Replication
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/directory/14-0/administrating/set-up-replication.html

    CA Directory r12 Data Replication and Recovery Best Practice.
    https://knowledge.broadcom.com/external/article?articleId=54088

    Performance and Tuning
    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/directory/14-0/performance-and-tuning.html

    CA DIRECTORY 14.0
    https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/directory/14-0.html