Collect User Credentials Using a Custom Authentication Scheme

CA SSO uses an authentication scheme to collect user credentials and determine identity of a user at login time. Once a user is identified, generates a personalized User Console that is based on the privileges of the user.
cim140
CA SSO uses an authentication scheme to collect user credentials and determine identity of a user at login time. Once a user is identified, 
Identity Manager
 generates a personalized User Console that is based on the privileges of the user.
You can implement any CA SSO authentication scheme to protect a 
Identity Manager
 Environment.
For example, you can implement an HTML Forms Authentication Scheme, which collects credentials in an HTML form. Using an HTML form lets you create a login page that may include branding elements, such as a company logo, and links to the self-registration and forgotten password pages.
For information about authentication schemes, see the.
 
Follow these steps:
 
  1. Log in to one of the following interfaces:
    • For CA SSO Web Access Manager r12 or higher, log in to the Administrative UI.
    • For CA eTrust CA SSO 6.0 SP5, log in to the Policy Server User Interface.
  2. Create an authentication scheme as described in the documentation.
     
  3. Modify the realm that protects the appropriate 
    Identity Manager
     Environment to use the authentication scheme you created in Step 1.
    The realm name has the format: 
    Identity Manager-environment
    _ims_realm
     
    Note:
     If you configured support for public tasks, you see an extra realm,
     Identity Manager-environment
    _pub_realm. This realm uses an anonymous authentication scheme to enable unknown users to use the self-registration and forgotten password features without supplying credentials. Do not modify the authentication schemes for these realms.