SafeWord Server Authentication Schemes

The SafeWord authentication schemes authenticate users against a SafeWord Server, including users who are logging in via the SafeWord hardware tokens. You can define multiple instances of this scheme. The SafeWord configuration file specifies the exact configuration parameters of the SafeWord Server.
sm1252sp1
The SafeWord authentication schemes authenticate users against a SafeWord Server, including users who are logging in via the SafeWord hardware tokens. You can define multiple instances of this scheme. The SafeWord configuration file specifies the exact configuration parameters of the SafeWord Server.
SafeWord authentication schemes, smauthenigma and smauthenigmahtml, are only supported on Windows and Solaris platforms after the 6.0 SP3 CR03 release.
SafeWord Server Scheme Prerequisites
Complete the following prerequisites before configuring a SafeWord authentication scheme:
  • The SafeWord Server is installed on a network accessible by the Policy Server.
  • The exact location of the SafeWord Server is specified in the SafeWord configuration file.
Configure a SafeWord Server Authentication Scheme
Use a SafeWord Server authentication scheme to authenticate users against a SafeWord Server, including users who are logging in via SafeWord hardware tokens.
The following procedure assumes that you are creating an object. You can also copy the properties of an existing object to create an object. For more information, see Duplicate Policy Server Objects.
Follow these steps:
  1. Click Infrastructure, Authentication.
  2. Click Authentication Schemes.
  3. Click Create Authentication Scheme.
    Verify that the Create a new object of type Authentication Scheme is selected.
  4. Click OK.
  5. Enter a name and protection level.
  6. Select SafeWord Template from the Authentication Scheme Type list.
  7. Enter the location of the SafeWord server configuration file.
    Default:
     C:\Program Files\CA\siteminder\config\SmSWEC.cfg
  8. Click Submit.
    The authentication scheme is saved. You can now assign it to a realm.