Home » Computer Associates Manuals » Computer Software » Computer Associates ETRPPCE8005BPE » Manual Viewer

Computer Associates ETRPPCE8005BPE Getting Started Guide - Page 5

: Introduction to eTrust SSO, The Purpose of this Guide

UPC - 757943311754

View all Computer Associates ETRPPCE8005BPE manuals

Add to My Manuals
Save this manual to your list of manuals

Page 5 highlights

Chapter 1 Introduction to eTrust SSO Case study eTrust™ Single Sign-On (eTrust SSO) is a system that you can configure so that end users only have to authenticate (log on and identify themselves) once to gain access to all of their secure desktop applications. The purpose of eTrust SSO is to: „ Simplify the logon and authentication process for end users „ Restrict access to specific data and applications on the network „ Create a more secure network environment „ Give administrators efficient and secure control over resources Max works for a large corporation. During the course of his day, Max has to log on to six different applications. He has to remember a different password for each one (many of them have different password requirements such as length, character set and change dates). To remember all the passwords, Max has to write them down. If Max had eTrust SSO he would only need to remember one password to gain access to all his secure applications. The Purpose of this Guide The purpose of this guide is to introduce you to eTrust SSO. This guide is primarily aimed at administrators who have not worked with eTrust SSO before, but is also useful for administrators who have worked with earlier versions of eTrust SSO and managers interested in an overview of eTrust SSO. When you finish this guide, you will be familiar with the basic functionality and applications of this product. Introduction to eTrust SSO 1-1

Section	Page
Getting Started	1
Contents	3
1: Introduction to eTrust SSO	5
The Purpose of this Guide	5
Documentation	6
Advantages of Using CA Products	6
eTrust Product Suite	6
CA Education Services	6
CA Technology Services	7
CA User Groups	7
Customer Support	7
Advantages of Using eTrust SSO	8
Benefits for End Users	8
Compatibility with Applications and Environments	8
Web Logon Security	9
Fewer Password Resets	9
Familiar Interface	9
Personalized Application Lists	9
Application Migration	10
Shared Local Workstations	10
Benefits for Administrators	11
Fewer Password Resets	11
Easily Updated Users and User Access	11
Centralized Management GUI	11
Flexible Administrator Tools	12
IA Manager Session Administration	12
Easy Troubleshooting	13
Enhanced Security	14
Fewer Visibly Recorded Passwords	14
More Secure Authentication	14
Password Management	15
Sensitive Application Mode	15
Passwords Securely Stored	15
Session Management Settings	16
Secure Network Traffic	16
One-Time Password Capability	16
Secure Authentication	17
Enhanced Flexibility	18
Identity and Access Management (eTrust IAM)	18
Phased Implementation	19
Legacy Systems Integration	20
Easily Populated Databases	20
Multiple Authentication Methods	20
Scalable Data Store	20
Robust Failover Capability	21
Smooth Implementation of New Systems	21
2: Introduction to eTrust IAM	23
eTrust IAM Product Suite	24
Common Components	24
Computer Roles	25
IA Manager	26
Available Features	26
IA Manager Navigation	27
Tabs and Subtabs	28
Identity Tab	28
Resource Tab	29
Endpoint Tab	30
Wizard Tab	30
Workflow Tab	31
Enterprise Tab	32
3: Installing eTrust SSO	33
Overview of the Installation	34
Before You Begin the eTrust SSO Installation	35
Set Administrator Access Rights	35
Install an Authentication Server	35
Install the IAM Common Components	36
Step 1: To Install the Directory Server and Configuration Information	36
Step 2: To install the Policy, Provisioning and Web Application Servers	37
Step 3: To Install the SSO-Specific Components	38
Install the Policy Manager	38
Install the Authentication Agent	39
Install the SSO Client	39
4: Concepts Behind eTrust SSO	41
End Users	41
End-User Experience	42
Ways to Manage End Users	42
Groups of End Users	42
Primary Authentication	43
Authentication Methods Developed and Supported by CA	43
Authentication Methods Supported by CA	43
Applications in eTrust SSO	44
Application Lists	44
Scripts	45
Scripts to Launch Applications	45
Other Functions for Scripts	45
Session Profiles	46
What is a Session Profile?	46
Resources	47
Different Types of Resources	47
Policies	48
5: Tour of eTrust SSO Components	49
Architectural Overview	50
SSO Client	51
Policy Manager	51
IA Manager	52
IAM Common Components	53
Policy Server	53
Provisioning Server	53
Web Application Server	54
Directory Server	54
Data Stores	55
eTrust Directory	55
eTrust Access Control	56
6: Common eTrust SSO Processes	57
Authenticating Users	58
What Is the Authentication Agent?	58
Where to Install the Authentication Agent	58
The Authentication Process	60
Launching Applications	61
Launching Windows Applications	61
Synchronizing Passwords	63
7: Basic Tasks Using IA Manager	65
Manage Accounts	65
Create an SSO WAC Account	65
Delete an SSO WAC Account	66
Add an Account Group to an SSO WAC Account	67
Delete an Account Group	68
Manage Applications	69
Assign Access Permission to an Account for an Application	69
Add a Script to an Application	70
Specify an Account's Login and Password for an Application	71
8: Basic Tasks Using Policy Manager	73
Policy Manager Navigation	74
Workspace	75
Program Bar	76
Application Windows	77
Users	78
Creating a User	78
Deleting a User	79
User Groups	80
Creating User Groups	80
Adding and Removing Group Members	82
Deleting a User Group	82
Administrators	83
Defining an eTrust SSO Administrator	83
Setting the Administrator Computer Access Rights	84
Deleting an Administrator	85
Sessions	86
Create a Session Profile	87
Apply a Session Profile to a Single User	88
Apply a Session Profile to a Group	89
Password Policies	91
Defining Password Policy Properties	92
Updating Password Policy Properties	92
9: Frequently Asked Questions	93
Functionality and Benefits	93
Passwords and Logon	94
Authentication	96
Implementation	97