Configure Authentication Schemes

Authentication schemes determine the identity of users who attempt to access the aan resources. Administrators can configure the following Identity Providers with aan to authenticate users:
Authentication schemes determine the identity of users who attempt to access the 
API Portal
 resources. Administrators can configure the following Identity Providers with 
API Portal
 to authenticate users:
Users who log in to CA API Developer Portal using an external authentication scheme cannot be edited in portal. You can, however, map the developer type users to multiple organizations. To do so, the Portal Administrator has to edit the authentication scheme of these users and set the authorization type to Portal. This feature allows the administrator to change only the organization and role mapping; other user details cannot be edited.
Administrators can add, view, and can edit the authentication schemes by clicking 
 and selecting the
option in the navigation bar.
Default Authentication Scheme
API Portal
 provides a default authentication scheme of type CA APIM to manage users in Portal database. Administrator can only perform the following operations on the default authentication scheme:
  • Edit the name of the authentication scheme
  • Manage password policies
  • Enable or disable the encrypting of passwords to reduce external attacks. By default, the encryption option is disabled.
To enable password encryption
  1. Log in to the API Portal as an Administrator.
  2. Click 
  3. On the 
    Authentication Schemes
     page, click the down arrow in the 
     section of the default authentication scheme, and select 
  4. Click 
    Advanced Configuration
    , select 
Log in to Portal with Configured Authentication Schemes
The configured authentication schemes are listed on the 
API Portal
 login page. Select an authentication scheme to log in, or set it as a default one. If you set an authentication scheme as a default one, 
API Portal
 renders the authentication scheme's login page to prompt user credentials.