What version of the CA eTrust Password Sync Agent should we install?
search cancel

What version of the CA eTrust Password Sync Agent should we install?

book

Article ID: 44681

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Identity Suite

Issue/Introduction

 

What version of the CA eTrust Password Sync Agent should be install?  

 



Environment

Identity Manager
14.3
14.4
14.5

Resolution

The Password Sync Agent is a standalone component that is implemented as a Windows Password Filter.
It intercepts incoming Password updates at the Domain Controller and will use ldap/ldaps to communicate with the Provisioning Server to propagate the Password change throughout the environment. 


The newer versions of Password Sync Agent will send the same format of transactions so, yes, you could use a newer release of the Password Sync Agent against an older Identity Manager's Provisioning Server. 



The Password Sync Agent can be downloaded as part of the "Identity Manager r14.# Provisioning components" media for your specific version from the Support Portal Product Download Page


Additional Information



IMPORTANT NOTE:

You should only attempt to use a Password Sync Agent that is the same, or a newer, version as the Identity Manager version.   Attempting to use an older version of the Password Sync agent may not work against a newer version of Identity Manager due to security changes around the TLS cipher as you advance through the Java release versions.

We cannot guarantee an older version of  Password Sync agent will work with a newer version of Identity Manager.