Perform the Bootstrapping Tasks for the System
INLINE
aa813test
aa813test
Bootstrapping
is a wizard-driven process that walks you through several CA Risk Authentication setup tasks. Other administrative links are enabled only after you perform these tasks. Before you start using Administration Console to manage CA Risk Authentication, perform the following mandatory steps to initialize the system:- Change the default Master Administrator password
- Configure the Global Key label
- Specify the configuration settings for the out-of-the-box organization
When you deploy Administration Console, an organization is created automatically. This organization is referred to as
Default Organization
(DEFAULTORG). As a single-organization system, the Default Organization itself can be used without creating any organizations.Follow these steps:
- Click Begin to start the process.The Change Password screen appears.
- Specify the Current Password, New Password, Confirm Password, and click Next.
- On the Configure a Global Key Label page do the following steps:
- Enter the Global Key Label, and click Next.CA Risk Authentication enables you to use hardware- or software-based encryption of your sensitive data. (You can enable hardware-based encryption by usingarcotcommon.inifile, while software-based encryption is enabled by default.) Irrespective of hardware or software encryption,Global Key Labelis used for encrypting user and organization data.If you use hardware encryption, this label serves as a pointer to the 3DES key stored in the HSM device. This labelmustmatch the HSM key label. For software-based encryption, this label is the key.After you complete the bootstrapping process, youcannotupdate this key label.
- Enter the Storage Type to indicate whether the encryption key is stored in the database (Software) or the HSM (Hardware).
- Click Next to continue.
- Under the Default Organization Configuration section, enter the following parameters:
- Display NameThe descriptive name of the organization. This name appears on all other Administration Console pages and reports.
- Administrator Authentication MechanismThe mechanism that is used to authenticate administrators that belong to the Default Organization. Administration Console supports the following types of authentication methods for the administrators:If you select this option, the administrators are authenticated by using their credentials that are stored in the directory service.LDAP User Password:
- If this mechanism is used for authenticating administrators, then deploy the UDS.
Basic: The built-in authentication method is used for authenticating the administrators.CA Strong Authentication Password: CA Strong Authentication Server issues and authenticates the credentials. The CA Strong Authentication Server is required.
- Under the Key Label Configuration section, specify the following values:
- Use Global KeyThis option is selected by default. Deselect this option if you want to override the Global Key Label you specified in the previous step. Specify a new label for encryption.
- Key LabelIf you deselected theUse Global Keyoption, then specify the new key label that you want to use for the Default Organization.
- Storage TypeThis field indicates whether the encryption key is stored in the database (Software) or the HSM (Hardware).
- Click Finish to complete the bootstrapping process.
- Click Continue to proceed with other configurations by using Administration Console.