How to protect Identity Manager's management console with Site Minder
search cancel

How to protect Identity Manager's management console with Site Minder

book

Article ID: 43690

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction

With SiteMinder connected with Identity Manager there can not be a way to secure IDM's mgmt console unless it's via SiteMinder as well.

Background:

Identity Manager has an option to protect/secure it's management console natively, that is during installation. However, this needs to change when SiteMinder is protecting Identity Manager.

Environment

Release: CAIDMB99000-12.6.7-Identity Manager-B to B
Component:

Resolution

When Site Minder protecting Identity Manager you should:

1. Disable the administration management console security that is enabled in your management_console.war inside your application server.

2. Follow the instructions to enable the ra.xml and disable the FrameworkAuthFilter in web.xml - see configuration guide -> chapter 12.

3. Add a realm to SiteMinder for /iam/immanage and protect this realm via SiteMinder.

Powered by Wolken Software