Integrate CA Single Sign-on with CA Identity Manager

When the policy administrator and the identity administrator work together to integrate CA SSO with an existing  installation, the  architecture expands to include the following components:
cim143
When the policy administrator and the identity administrator work together to integrate CA SSO with an existing
Identity Manager
installation, the
Identity Manager
architecture expands to include the following components:
  • CA SSO Web Agent
    Protects the
    Identity Manager
    Server. The Web Agent is installed on the system where the
    Identity Manager
    server is installed.
  • CA SSO Policy Server
    Provides advanced authentication and authorization for
    Identity Manager
    .
How you integrate depends on what your system state: with a new or existing version of
Identity Manager
, while upgrading
Identity Manager
, or if you want to use a completely manual process. See Use Cases for Integrating CA Identity Manager and CA SSO for more information.
We recommend that you install
Identity Manager
and CA SSO on different computers. The components can be installed on different platforms.
Identity Manager
requires Java Cryptography Extension Unlimited Strength Jurisdiction Policy Files (JCE libraries). Download these libraries from the Oracle website, and load them at <Java_path>\<jdk_version>\jre\lib\security\.
The following diagram is an example of a
Identity Manager
installation with a CA SSO Policy Server and Web Agent:
The image shows an example of a CA Identity Manager installation with a CA SSO Policy Server and Web Agent
The image shows an example of a CA Identity Manager installation with a CA SSO Policy Server and Web Agent