Collect User Credentials Using a Custom Authentication Scheme
CA SSO uses an authentication scheme to collect user credentials and determine identity of a user at login time. Once a user is identified, generates a personalized User Console that is based on the privileges of the user.
CA SSO uses an authentication scheme to collect user credentials and determine identity of a user at login time. Once a user is identified,
Identity Managergenerates a personalized User Console that is based on the privileges of the user.
You can implement any CA SSO authentication scheme to protect a
For example, you can implement an HTML Forms Authentication Scheme, which collects credentials in an HTML form. Using an HTML form lets you create a login page that may include branding elements, such as a company logo, and links to the self-registration and forgotten password pages.
For information about authentication schemes, see the
CA SSO Policy Server Configuration documentation.
Follow these steps:
- Log in to one of the following interfaces:
- For CA SSO Web Access Manager r12 or higher, log in to the Administrative UI.
- For CA eTrust CA SSO 6.0 SP5, log in to the Policy Server User Interface.
- Create an authentication scheme as described in the
- Modify the realm that protects the appropriateIdentity ManagerEnvironment to use the authentication scheme you created in Step 1.The realm name has the format:Identity Manager-environment_ims_realmNote:If you configured support for public tasks, you see an extra realm,Identity Manager-environment_pub_realm. This realm uses an anonymous authentication scheme to enable unknown users to use the self-registration and forgotten password features without supplying credentials. Do not modify the authentication schemes for these realms.