Is it possible to configure two separate Active Directory domains for authentication in CA SAM?
search cancel

Is it possible to configure two separate Active Directory domains for authentication in CA SAM?

book

Article ID: 43331

calendar_today

Updated On:

Products

CA IT Asset Manager CA Software Asset Manager (CA SAM) ASSET PORTFOLIO MGMT- SERVER CA Service Management - Asset Portfolio Management CA Service Management - Service Desk Manager

Issue/Introduction

Introduction: 

This article explains how CA SAM can be configured to work with Windows Authentication using two separate Active Directory domains.

Question: 

We have two separate Active Directory domains and we need users from both environments to be able to authenticate against a single instance of CA SAM. Is this scenario possible?

Environment:  

CA SAM 4.x

Windows 2012 Active Directory

Answer: 

CA SAM Windows Authentication relies on IIS authentication mechanism. This means that if you are able to configure IIS to authenticate users from two different domains (this will most likely need at least some level of trust relationship between the domains) then we should expect CA SAM to work fine. 

Please note that this is an environment specific configuration and therefore we are unable to advise on steps to configure IIS for multiple AD domain authentication, however the article TEC1823142 (http://www.ca.com/us/support/ca-support-online/product-content/knowledgebase-articles/tec1823142.aspx) contains information on how to setup CA SAM authentication.

 

 

Environment

Release: UAPMAC990JPP-12.9-Asset Portfolio Management-Asset Configuration
Component: