Configure Authentication Schemes

Authentication schemes determine the identity of users who attempt to access the aan resources. Administrators can configure the following Identity Providers with aan to authenticate users:
Authentication schemes determine the identity of users who attempt to access the 
API Portal
 resources. Administrators can configure the following Identity Providers with 
API Portal
 to authenticate users:
  • Microsoft Active Directory 
  • Lightweight Directory Access Protocol (LDAP) (SaaS and On-Premise Portal)
  • SAML Single Sign On (SaaS and On-Premise Portal)
  • CA Single Sign-On (On-Premise Portal only)
Administrators can add, view, and can edit the authentication schemes by clicking 
 and selecting the
option in the navigation bar.
Follow the sections to configure the following Identity Providers:
Default Authentication Scheme
API Portal
 provides a default authentication scheme of type CA APIM to manage users in the Portal database. The Administrator can only perform the following operations on the default authentication scheme:
  • Edit the name of the authentication scheme
  • Manage password policies
  • image2018-6-26 11:48:3.pngEnable or disable the encrypting of passwords to reduce external attacks. By default, the encryption option is disabled.
To enable password encryption:
  1. Log in to the API Portal as an Administrator.
  2. Select 
    , and then select the 
    option in the navigation bar.
  3. On the 
    Authentication Schemes
     page, select the drop-down list in 
     for the default authentication scheme, and select 
  4. Select 
    Advanced Configuration
    , and select the 
  5. Select 
Log in to Portal with Configured Authentication Schemes
The configured authentication schemes are listed on the 
API Portal
 login page. Select an authentication scheme to log in, or set it as a default one. If you set an authentication scheme as a default, 
API Portal
 renders the authentication scheme login page to prompt for user credentials.