Multifactor Authentication (MFA) and Advanced Password Services (APS) Integration Requirements - SiteMinder
search cancel

Multifactor Authentication (MFA) and Advanced Password Services (APS) Integration Requirements - SiteMinder

book

Article ID: 435920

calendar_today

Updated On:

Products

SITEMINDER Symantec Identity Security Platform - IDSP (formerly VIP Authentication Hub) CA Single Sign-On

Issue/Introduction

Running SiteMinder and integrating Advanced Password Services with Multi Factor Authentication (MFA):

  • MFA: the solution the Accces Gateway is mentioned. Will MFA only work with Access Gateway?
  • Authentication Hub: what can be used for that? What are the requirements?

Environment

  • Policy Server: 12.8.x, 12.9
  • Web Agent: 12.8.x
  • CA Access Gateway (SPS): 12.8.x, 12.9
  • IDSP: Symantec Identity Security Platform (formerly VIP Authentication Hub) 4.0

Resolution

Multi-Factor Authentication Component Requirements

To run the Multi-Factor Authentication Chain template, the following component requirements must be met:

  • CA Access Gateway (SPS): Mandatory for running the MFA Chain template (1).
  • First Authentication Scheme: Can be hosted on either a SiteMinder Web Agent (version 12.8 or higher) or the CA Access Gateway (SPS)(1).

Authentication Hub and Identity Security Platform

The Symantec Identity Security Platform (IDSP), formerly known as VIP Authentication Hub, provides various authentication options and password policies (2).

  • Deployment: IDSP typically runs in containers managed by Kubernetes (3)(4)(5).
  • Capabilities: Provides flexible authentication challenges and integrated password management (6).

Additional Information

  1. Integration with VIP Authentication Hub

  2. Integration of SiteMinder with Symantec Identity Security Platform

  3. Kubernetes Support

  4. Overview of Symantec Identity Security Platform Deployment

  5. Prerequisites

  6. Setting a Password Policy

Powered by Wolken Software