Configure Authentication Schemes
Authentication schemes determine the identity of users who attempt to access the aan resources. Administrators can configure the following Identity Providers with aan to authenticate users:
Authentication schemes determine the identity of users who attempt to access the
API Portalresources. Administrators can configure the following Identity Providers with
API Portalto authenticate users:
Users who log in to CA API Developer Portal using an external authentication scheme cannot be edited in portal. You can, however, map the developer type users to multiple organizations. To do so, the portal administrator has to edit the authentication scheme of these users and set the authorization type to Portal. For more information, see Map IdP Users to Multiple Organizations. This feature allows the administrator to change only the organization and role mapping; other user details cannot be edited.
Administrators can add, view, and can edit the authentication schemes by clicking
Administrationand selecting the
Authenticationoption in the navigation bar.
Default Authentication Scheme
API Portalprovides a default authentication scheme of type CA APIM to manage users in Portal database. Administrator can only perform the following operations on the default authentication scheme:
- Edit the name of the authentication scheme
- Manage password policies
- Enable or disable the encrypting of passwords to reduce external attacks. By default, the encryption option is disabled.
To enable password encryption
- Log in to the API Portal as an Administrator.
- On theAuthentication Schemespage, click the down arrow in theActionssection of the default authentication scheme, and selectEdit.
- ClickAdvanced Configuration, selectEnableoption.
Log in to Portal with Configured Authentication Schemes
The configured authentication schemes are listed on the
API Portallogin page. Select an authentication scheme to log in, or set it as a default one. If you set an authentication scheme as a default one,
API Portalrenders the authentication scheme's login page to prompt user credentials.