Which authentication schemes support Password Policies?

book

Article ID: 51196

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Description:

Not all authentication schemes support password policies. If the authentication scheme does not support Password Policies, the check box description is dimmed and the check box is unavailable.

Solution:

Following authentication schemes will have checkbox "Paswords Policies Enabled for this authentication scheme dimmed and unavailable for selection:

  • Anonymous

  • Impersonation

  • MS Passport

  • SafeWord

  • SafeWord and HTML Forms

  • SecurID

  • SecurID and HTML Forms

  • X.509 Client Certificate

For windows authentication scheme, even though the checkbox is available, some functionality will not be available. With IWA, password is not available to SiteMinder at the time to authentication since IIS server does the authentication together with the browser and the AD.

Environment

Release:
Component: SMPLC