How to set up CA TPX with Multi-Factor Authentication (MFA) and Advanced Authentication Mainframe (AAM) Support
Article ID: 10028
Updated On:
Products
Issue/Introduction
CA TPX is capable of coordinating with Multi-Factor Authentication (MFA) and Advanced Authentication Mainframe (AAM) enabled in your external security products.
Environment
TPX 5.4
Resolution
Refer to TPX 5.4 documentation for up to date implementation instructions related to MFA/AAM:
- Multi-Factor Authentication (MFA) and Advanced Authentication Mainframe (AAM) Support
- LOCK/UNLOCK Reverification Enhancement
IMPORTANT: TPX supports RACF password phrase and MFA through the SAF interface. Sites using IBM RACF must configure CA TPX to use SAF security. Set SMRT Security System to SAF and SAMT to SAF.
There are several Published Solutions required for MFA/AAM implementation with CA TPX.
At the time of this document publication, these are the available CA TPX PTFs required for MFA/AMM:
1) TPX LOCK: USER CREDENTIALS REVERIFICATION BY SECURITY - CA TPX LOCK
Function does not call security system for the user's credentials to be re-verified for the unlock process of LOCKED terminal. AAM/MFA users using CA TPX LOCK cannot unlock their terminal.
|
Fix# |
FMID |
Contents |
Panel languages |
|
RO94346 |
CB0V549 |
HIT… & TIT… panels |
IT Italian |
|
RO94345 |
CB0V548 |
HGE… & TGE… panels |
GE German |
|
RO94344 |
CB0V547 |
HFR… & TFR… panels |
FR French |
|
RO94343 |
CB0V546 |
HFI… & TFI… panels |
FI Finnish |
|
RO94342 |
CB0V545 |
HDU… & TDU… panels |
DU Dutch |
|
RO94341 |
CB0V544 |
HDA… & TDA… panels |
DA Danish |
|
RO94340 |
CB0V543 |
HBP… & TBP… panels |
BP Brazilian Portuguese |
|
RO94339 |
CB0V542 |
HBF… & TBF… panels |
BF Belgium French |
|
RO94338 |
CB0V541 |
HCU… , HEN… , TCU… & TEN… panels |
EN English |
|
RO94337 |
CB0V540 |
Base product |
|
|
RO94336 |
CB0V54G |
HUP… & TUP… panels |
UP Upper Case English |
|
RO94335 |
CB0V54F |
HSW… & TSW… panels |
SW Swedish |
|
RO94334 |
CB0V54E |
HSP… & TSP… panels |
SP Spanish |
|
RO94333 |
CB0V54D |
HSG… & TSG… panels |
SG Swiss German |
|
RO94332 |
CB0V54C |
HSF… & TSF… panels |
SF Swiss French |
|
RO94331 |
CB0V54B |
HNO… & TNO… panels |
NO Norwegian |
|
pending |
CB0V54A |
HKA… & TKA… panels |
JP Japanese |
2) ADVANCED AUTHENTICATION AND MFA SUPPORT
Advanced Authentication and Multi Factor Authentication (MFA) support within CA TPX.
NOTE: After these fixes are applied, change the new SMRT Security Parameter MultiFactor Authentication to Y. Reload the SMRT after the change.
|
Fix# |
FMID |
Contents |
Panel languages |
|
RO93704 |
CB0V541 |
HCU… , HEN… , TCU… & TEN… panels |
EN English |
|
RO93703 |
CB0V540 |
Base product |
|
|
RO93702 |
CB0V54G |
HUP… & TUP… panels |
UP Upper Case English |
3) ACL PASSWORD NOT HONORED FOR PASSPHRASE USERS
ACL PASSWORD or Pass Ticket is not being honored for users signed onto TPX with password phrase (passphrase) or MFA pass code for &PSWD variable.
|
Fix# |
FMID |
Contents |
Panel languages |
|
RO92414 |
CB0V540 |
Base product |
|
*** You can find these and future fixes by searching support.broadcom.com for: TPX MFA
Additional Information
Feedback
