Integrate CA Single Sign-on with CA Identity Manager

When the policy administrator and the identity administrator work together to integrate CA SSO with an existing  installation, the  architecture expands to include the following components:
cim141
When the policy administrator and the identity administrator work together to integrate CA SSO with an existing 
Identity Manager
 installation, the 
Identity Manager
 architecture expands to include the following components:
  •  
    CA SSO Web Agent
    Protects the 
    Identity Manager
     Server. The Web Agent is installed on the system where the 
    Identity Manager
     server is installed.
  •  
    CA SSO Policy Server
    Provides advanced authentication and authorization for 
    Identity Manager
    .
The following diagram is an example of a 
Identity Manager
 installation with a CA SSO Policy Server and Web Agent:
The image shows an example of a CA Identity Manager installation with a CA SSO Policy Server and Web Agent
The image shows an example of a CA Identity Manager installation with a CA SSO Policy Server and Web Agent
 
Note
: We recommend that you install 
Identity Manager
 and CA SSO on different computers. The components can be installed on different platforms. The 
Identity Manager
 databases are on Microsoft SQL Server and the user store is on the IBM directory Server. The CA SSO Policy Store is on AD LDS on Windows.
When CA SSO authentication is used to protect any 
Identity Manager
 resource, 
Identity Manager
 requires you to enable the CA SSO Policy Server Resource Adapter
The following diagram illustrates the complete process of integrating CA SSO with 
Identity Manager
. Completing this process requires two roles: the 
Identity Manager
 identity administrator and the CA SSO policy administrator. In some organizations, one person fills both roles. When two people are involved, close collaboration is required to complete the procedures in this scenario. 
 
Identity Manager
 requires Java Cryptography Extension Unlimited Strength Jurisdiction Policy Files (JCE libraries). Download these libraries from the Oracle website, and load them at <Java_path>\<jdk_version>\jre\lib\security\.
This diagram illustrates the complete process of integrating CA SSO into CA Identity Manager
This diagram illustrates the complete process of integrating CA SSO into CA Identity Manager
 
Follow these steps: