Security Services. Benefits. The CA Advantage. Overview



Similar documents
CA Federation Manager

Product overview. CA SiteMinder lets you manage and deploy secure web applications to: Increase new business opportunities

CA SiteMinder SSO Agents for ERP Systems

How can Identity and Access Management help me to improve compliance and drive business performance?

solution brief February 2012 How Can I Obtain Identity And Access Management as a Cloud Service?

SAML SSO Configuration

AND SUN OPENSSO MICROSOFT GENEVA SERVER ENABLING UNPRECEDENTED COLLABORATION ACROSS HETEROGENEOUS IT ENVIRONMENTS. White Paper May 2009.

expanding web single sign-on to cloud and mobile environments agility made possible

White paper December Addressing single sign-on inside, outside, and between organizations

CA Repository for Distributed. Systems r2.3. Benefits. Overview. The CA Advantage

CA Configuration Management Database (CMDB)

An Oracle White Paper Dec Oracle Access Management Security Token Service

CA XOsoft Content Distribution v4

Web Access Management. RSA ClearTrust. Enhancing control. Widening access. Driving e-business growth. SSO. Identity Management.

The Primer: Nuts and Bolts of Federated Identity Management

Microsoft and Novell - A Case Study in Identity Federation

HP Software as a Service. Federated SSO Guide

TECHNOLOGY BRIEF: INTEGRATED IDENTITY AND ACCESS MANAGEMENT (IAM) An Integrated Architecture for Identity and Access Management

Security solutions Executive brief. Understand the varieties and business value of single sign-on.

How can I deploy a comprehensive business continuity and disaster recovery solution in under 24 hours without incurring any capital costs?

CA Service Desk Manager

CA Single Sign-On r12.x (CA SiteMinder) Implementation Proven Professional Exam

Federated single sign-on (SSO) and identity management. Secure mobile access. Social identity integration. Automated user provisioning.

The Primer: Nuts and Bolts of Federated Identity Management

Cloud Single Sign-On and On-Premise Identity Federation with SAP NetWeaver Cloud White Paper

Perceptive Experience Single Sign-On Solutions

identity as the new perimeter: securely embracing cloud, mobile and social media agility made possible

CA Records Manager. Benefits. CA Advantage. Overview

CA Tape Encryption Key Manager

SOLUTION BRIEF: CA CLARITY GRANTS MANAGER. CA Clarity Grants Manager

PRODUCT CATEGORY BROCHURE. Juniper Networks SA Series

Using Entrust certificates with VPN

SOLUTION BRIEF CA SERVICE MANAGEMENT - SERVICE CATALOG. Can We Manage and Deliver the Services Needed Where, When and How Our Users Need Them?

Allidm.com. SSO Introduction. Discovering IAM Solutions. Leading the IAM facebook/allidm

Single Sign-on to Salesforce.com with CA Federation Manager

1 CA SECURITY SAAS VALIDATION PROGRAM 2015 ca.com. CA Security SaaS Validation Program. Copyright 2015 CA. All Rights Reserved.

Can CA Information Governance help us protect and manage our information throughout its life cycle and reduce our risk exposure?

Improving Security and Productivity through Federation and Single Sign-on

The Challenges of Managing Multiple Cloud Identities and Enterprise Identity by BlackBerry

Global Outsourcing / Infrastructure Management. Instinct 2.0. Bridging the Gap between the Disparate Needs of Organizations and End-Users

Web Applications Access Control Single Sign On

TRANSITIONING ENTERPRISE CUSTOMERS TO THE CLOUD WITH PULSE SECURE

CA Message Manager. Benefits. Overview. CA Advantage

Security Assertion Markup Language (SAML) Site Manager Setup

The Role of Federation in Identity Management

An Oracle White Paper August Oracle OpenSSO Fedlet

SOLUTION BRIEF: CA CLARITY PPM ON DEMAND. How can I quickly deploy applications across a complex enterprise?

Federated Identity and Single Sign-On using CA API Gateway

HP Software as a Service

Introduction to SAML

managing SSO with shared credentials

The Top 5 Federated Single Sign-On Scenarios

Your Location Instant NOC using Kaseya. Administrator at Remote Location Secure access to Management Console from anywhere using only a browser

VALUE PROPOSITION FOR SERVICE PROVIDERS. Helping Service Providers accelerate adoption of the cloud

CA SOLVE:Central Service Desk for z/os

CA Vulnerability Manager r8.3

Asentinel Telecom Expense Management (TEM)

An Overview of Samsung KNOX Active Directory-based Single Sign-On

Flexible Identity Federation

WHITE PAPER. Identikey Server 3.1 Strong Authentication solution for On-Demand Applications and SaaS

nexus Hybrid Access Gateway

CA Automation Suite for Data Centers

SOLUTION BRIEF CA TECHNOLOGIES IDENTITY-CENTRIC SECURITY. How Can I Both Enable and Protect My Organization in the New Application Economy?

Active Directory Compatibility with ExtremeZ-IP. A Technical Best Practices Whitepaper

IBM Tivoli Federated Identity Manager

Get Success in Passing Your Certification Exam at first attempt!

CA Nimsoft Service Desk

SAML-Based SSO Solution

The governance IT needs Easy user adoption Trusted Managed File Transfer solutions

APPLICATION ACCESS MANAGEMENT (AAM) Augment, Offload and Consolidate Access Control

PROVIDING SINGLE SIGN-ON TO AMAZON EC2 APPLICATIONS FROM AN ON-PREMISES WINDOWS DOMAIN

Collaboration solutions for midsized businesses Buyer s guide

Uniting IAM and data protection for greater security

OPENIAM ACCESS MANAGER. Web Access Management made Easy

CA IT Client Manager

How Technology Supports Project, Program and Portfolio Management

Improve Security, Lower Risk, and Increase Compliance Using Single Sign-On

CA Technologies Strategy and Vision for Cloud Identity and Access Management

PASS4TEST 専 門 IT 認 証 試 験 問 題 集 提 供 者

How to Provide Secure Single Sign-On and Identity-Based Access Control for Cloud Applications

Provide access control with innovative solutions from IBM.

CA NSM System Monitoring. Option for OpenVMS r3.2. Benefits. The CA Advantage. Overview

CA Technologies Empowers Employees with Better Access to Applications via OneAccess Mobile App

PRODUCT CATEGORY BROCHURE

CA XOsoft Continuous Data Protection Solo V4

Open Directory. Apple s standards-based directory and network authentication services architecture. Features

Connecting Users with Identity as a Service

Strengthen security with intelligent identity and access management

accelerating time to value in Microsoft Hyper-V environments

CA Clarity Integration

CA Spectrum and CA Embedded Entitlements Manager

IBM Security Systems Division

CA CMDB Connector for z/os version 2.0

CA Service Desk On-Demand

SA Series SSL VPN Virtual Appliances

WatchGuard SSL 2.0 New Features

OpenSSO: Simplify Your Single-Sign-On Needs. Sang Shin Java Technology Architect Sun Microsystems, inc. javapassion.com

TRUSTED IDENTITIES, MANAGED ACCESS Implementing an Identity and Access Management Strategy for the Mobile Enterprise. Introduction.

IBM Security & Privacy Services

Nationwide and Regional Health Information Networks and Federated Identity for Authentication and HIPAA Compliance

Transcription:

PRODUCT BRIEF: CA SITEMINDER FEDERATION SECURITY SERVICES CA SiteMinder Federation Security Services CA SITEMINDER FEDERATION SECURITY SERVICES EXTENDS THE WEB SINGLE SIGN-ON EXPERIENCE PROVIDED BY CA SITEMINDER WEB ACCESS MANAGER (CA SITEMINDER WAM) TO APPLICATIONS AND PORTALS PROVIDED INTERNALLY BY OTHER ORGANIZATIONAL BUSINESS UNITS, OR EXTERNALLY ON THE INTERNET BY PARTNERS OR APPLICATION OUTSOURCERS. Overview Benefits The CA Advantage Your customers, partners and employees fully expect access to your critical applications, information and services anywhere and at any time. The rapid buildup of application outsourcing, software-as-a-service, and other IT-enabled business-tobusiness partnerships does not change this. It does however, raise a new set of security management challenges when attempting to manage security across the Internet. Identity federation was explicitly invented to address these new security challenges. CA SiteMinder Federation Security Services enables you to secure, manage, and monitor access to federated Web applications. The ability to quickly federate Web applications enables you to: More quickly leverage new partner dependent business opportunities Improve the user experience through single sign-on (SSO) Better manage costs Improve application security Ease regulatory compliance CA SiteMinder Federation Security Services is an integral component of CA SiteMinder WAM and delivers reliable, scalable and manageable federated access into and out of a SiteMinder protected domain. Adding this service to a CA SiteMinder WAM deployment enables your organization to act as an identity or service provider, or both with a given partner, providing support of industry standards and products such as SAML, WS-Federation, and Microsoft ADFS. CA SiteMinder Federated Security Services is part of CA s larger vision, Enterprise IT Manage - ment (EITM), which can help you unify and simplify IT manage ment across the enterprise.

CA SiteMinder Federation Security Services extends CA SiteMinder WAM with Federated SSO Internet technology has matured to the point that effective coordination and mass IT inte - gration between trading, outsourcing, and other business partners is now readily achievable and affordable. Moreover, the advent of widely adopted security and industry specific standards are easing the extension of today s enterprises by lowering the barriers to connecting business applications both within and across organizational boundaries, leveraging the Internet. The federated application and security integration of CA SiteMinder Federation Security Services enables your organization to reduce costs, more quickly seize new business opportunities, and provide greater convenience, choice, and control for your users. Key Capabilities MULTIPLE FEDERATION PROTOCOL SUPPORT CA SiteMinder Federation Security Services provides out-of-the box support for a wide range of federation standards including SAML 1.0, 1.1, and 2.0, as well as WS-Federation/Microsoft ADFS, thus providing enterprises maximum flexibility for federating with a wide range of external business partners and internal units. ENABLES CA SITEMINDER WAM TO ACT AS BOTH AN IDENTITY PROVIDER AND A SERVICE PROVIDER CA SiteMinder Federation Security Services enables a CA SiteMinder WAM deployment to function as both a SAML-based identity provider with configured application partners, as well as a service provider to receive remotely authenticated users as appropriate for the given partnership. With the support of the WS-Federation and Microsoft ADFS specification and product, CA SiteMinder Federation Security Services provides an equivalent claims-based federation support as well, enabling a CA SiteMinder Federation Security Services deployment to act as both an account partner as well as a resource partner. SINGLE SIGN-ON AND SINGLE LOGOUT With SAML 2.0 and WS-Federation/Microsoft ADFS, CA SiteMinder Federation Security Services provides both single sign-on (SSO) and single logout (SLO) functions across federated security domains. INTEGRATED USER ADMINISTRATION CA SiteMinder Federation Security Services benefits from the user administration capabilities of CA Identity Manager, enabling IT organizations to selectively delegate user administration and provide registration services for federated users, whether they are inside or outside the enterprise. PROVEN SCALABILITY AND MANAGEABILITY CA SiteMinder Federation Security Services, as a service deployed within CA SiteMinder WAM infrastructure, provides enterprise-class scalability that supports load balancing, fully tunable two-level caching, replication, and automatic failover. This proven scalability empowers your organization to deploy identity federation in high transaction volume environments with high availability and no loss of security. AUDITING CA SiteMinder WAM enables your organization to define auditable activities to be logged. In addition, CA SiteMinder WAM provides pre-defined, Web-based reports for user and administrative activity involving protected resources. Auditing and reporting lets managers track federated user activity, and analyze and correct security events and anomalies in the context of the web portals overall security activity. 2 PRODUCT BRIEF: CA SITEMINDER FEDERATION SECURITY SERVICES

FIGURE A 1. The user requests access to the portal at Organization A. 2. The user is challenged for authentication credentials that are collected by the web agent or the secure proxy server. 3. The user s credentials are passed to the CA SiteMinder policy server. 4. The user is authenticated against the appropriate user store. 5. The user attempts to access the secured portal at Organization B. 6. CA SiteMinder Federation Security Services generates a SAML assertion for that user and passes the assertion over to Organization B. 7. Security domain at Organization B intercepts incoming SAML assertion and disambiguates the user. The user experiences single sign-on across the Internet and secure access to the portal at Organization B. HOW CA SITEMINDER FEDERATION SECURITY SERVICES WORKS Note: In this scenario, Organization B is assumed to be using a SAML compliant solution from another vendor, or alternatively, Microsoft ADFS. CA SiteMinder Federation Security Services Improves Security and the User Experience, Mitigates Costs, and Eases Regulatory Compliance The Web is open for business around-the-clock, and CA SiteMinder WAM with CA SiteMinder Federation Security Services reliably and effectively enables your online presence to be secure, available and accessible to the right users, whether they are traditional users logging directly into your Web portal or users that are federating in and out via business partners. PRODUCT BRIEF: CA SITEMINDER FEDERATION SECURITY SERVICES 3

INCREASE BUSINESS OPPORTUNITIES CA SiteMinder Federation Security Services enables faster, easier, and more secure deployments of partner-based, collaborative applications, thus using IT and security to accelerate revenue enhancing business relationships, while still mitigating costs and reducing risk. INCREASE SECURITY TO MITIGATE RISKS Controlling access to outsourced applications is just as important as controlling access to internally deployed applications. With the advent of softwareas-a-service, ASPs, and other IT enabled business partnerships, controlling access to applica - tions on all parts of the IP network is critical. CA SiteMinder Federation Security Services enables federated applications to be a seamless part of your Web access management-based control environment. PROVIDE USERS WITH A POSITIVE ONLINE EXPERIENCE CA SiteMinder Federation Security Services extends the Web SSO experience of CA SiteMinder WAM with applications provided by or to partners, enabling seamless user access no matter where the target application is actually deployed. MANAGE COSTS CA SiteMinder Federation Security Services mitigates the cost of managing identities across a network of partners by more broadly leveraging the identity management, user authentication, and access management practices of the organization that best knows the user. No longer does every organization in a partner network need to proof and authenticate the user s identity and issue and manage the user s credentials through federation they can share this activity. This saves money that can be shared across the network of partners. Also, federated applications can significantly reduce the use of your help desk by aiding in getting access to outsourced applications. EASE REGULATORY COMPLIANCE Organizations can outsource applications, data, and transactional services, but they cannot outsource responsibility from an IT control, data privacy, and regulatory compliance point of view. With identity federation the standards-based security system bridges the Internet, enabling both the identity provider and the service provider to manage their end of the federated relationship consistent with their regulatory compliance responsibilities. BROWSER FEDERATION STANDARDS SUPPORT SAML 1.0, 1.1, 2.0 WS-Federation/Microsoft ADFS BROWSER FEDERATION FEATURES Identity Provider Service Provider Artifact Binding Post Binding Single Log-out Profiles ECP Attribute Authority Requester Attribute Authority Responder GSA eauthentication Profile 4 PRODUCT BRIEF: CA SITEMINDER FEDERATION SECURITY SERVICES

The CA Advantage CA SiteMinder Federation Security Services is part of the comprehensive CA Identity and Access Management solution that helps you protect your IT assets across all platforms and environments. As such, it contributes to your ability to optimize the performance, reliability and efficiency of your overall IT environment. The next step is to tightly integrate the control and management of distinct functions, such as operations, storage and lifecycle and service management, along with IT security. This higher level of management control supports CA s vision for Enterprise IT Management (EITM) which is to help you unify and simplify IT management across your enterprise. EITM is a dynamic and secure approach that integrates and automates the management of applications, databases, networks, security, storage and systems across departments and disciplines to maximize the full potential of each. CA s comprehensive portfolio of modular IT management solutions helps you to better manage risk, costs and service, and ensure that IT meets the business needs of your enterprise. CA Services and our partners can help you assess your current IT situation, define your goals and implement solutions to gain measurable results. To keep your CA solutions operating at peak performance, CA Support delivers unparalleled technical and customer support worldwide, and we offer training and certification through CA Education. CA Education a preferred source for IT management and best practices training is an important part of our services offering. We assess your training needs, create the right training plan for you and optimize the program with advanced coursework and industry certifications. Next Steps CA SiteMinder Federation Security Services enables you to configure, manage, and monitor federated Web applications, enabling your organization to reduce costs, more quickly seize new business opportunities, and provide greater convenience, choice, and control for your users. Its seamless integration with your existing CA SiteMinder WAM infrastructure enables you to deploy it as part of your existing Web security infrastructure without the need for 3rd-party components. To learn more, and see how CA software solutions enable other organizations to unify and simplify IT management for better business results, visit ca.com/customers. Copyright 2008 CA. All rights reserved. All trademarks, trade names, service marks and logos referenced herein belong to their respective companies. MP328900508 Learn more about how CA can help you transform your business at ca.com

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information