Perform the Bootstrapping Tasks for the System

INLINE
aa813test
aa813test
Bootstrapping
is a wizard-driven process that walks you through several CA Risk Authentication setup tasks. Other administrative links are enabled only after you perform these tasks. Before you start using Administration Console to manage CA Risk Authentication, perform the following mandatory steps to initialize the system:
  • Change the default Master Administrator password
  • Configure the Global Key label
  • Specify the configuration settings for the out-of-the-box organization
When you deploy Administration Console, an organization is created automatically. This organization is referred to as
Default Organization
(DEFAULTORG). As a single-organization system, the Default Organization itself can be used without creating any organizations.
Follow these steps:
  1. Click Begin to start the process.
    The Change Password screen appears.
  2. Specify the Current Password, New Password, Confirm Password, and click Next.
  3. On the Configure a Global Key Label page do the following steps:
    • Enter the Global Key Label, and click Next.
      CA Risk Authentication enables you to use hardware- or software-based encryption of your sensitive data. (You can enable hardware-based encryption by using
      arcotcommon.ini
      file, while software-based encryption is enabled by default.) Irrespective of hardware or software encryption,
      Global Key Label
      is used for encrypting user and organization data.
      If you use hardware encryption, this label serves as a pointer to the 3DES key stored in the HSM device. This label 
      must
      match the HSM key label. For software-based encryption, this label is the key.
      After you complete the bootstrapping process, you
      cannot
      update this key label.
    • Enter the Storage Type to indicate whether the encryption key is stored in the database (Software) or the HSM (Hardware).
  4. Click Next to continue.
  5. Under the Default Organization Configuration section, enter the following parameters:
    • Display Name
      The descriptive name of the organization. This name appears on all other Administration Console pages and reports.
    • Administrator Authentication Mechanism
      The mechanism that is used to authenticate administrators that belong to the Default Organization. Administration Console supports the following types of authentication methods for the administrators:
      LDAP User Password:
      If you select this option, the administrators are authenticated by using their credentials that are stored in the directory service.
      • If this mechanism is used for authenticating administrators, then deploy the UDS.
      Basic: The built-in authentication method is used for authenticating the administrators.
      CA Strong Authentication Password: CA Strong Authentication Server issues and authenticates the credentials. The CA Strong Authentication Server is required.
  6. Under the Key Label Configuration section, specify the following values:
    • Use Global Key
      This option is selected by default. Deselect this option if you want to override the Global Key Label you specified in the previous step. Specify a new label for encryption.
    • Key Label
      If you deselected the 
      Use Global Key
       option, then specify the new key label that you want to use for the Default Organization.
    • Storage Type
      This field indicates whether the encryption key is stored in the database (Software) or the HSM (Hardware).
  7. Click Finish to complete the bootstrapping process.
  8. Click Continue to proceed with other configurations by using Administration Console.