CA SSO Cloud-Enabled with SSO/Rest

Similar documents
The Modern Web Access Management Platform from on-premises to the Cloud

How-to Guide: Tenable Nessus for Microsoft Azure. Last Updated: April 03, 2018

How-to Guide: Tenable.io for Microsoft Azure. Last Updated: November 16, 2018

WHITE PAPER AIRWATCH SUPPORT FOR OFFICE 365

Centrify Identity Services for AWS

SAP Security in a Hybrid World. Kiran Kola

BEYOND AUTHENTICATION IDENTITY AND ACCESS MANAGEMENT FOR THE MODERN ENTERPRISE

Certificate Enrollment for the Atlas Platform

CA SiteMinder. Federation in Your Enterprise 12.51

5 OAuth EssEntiAls for APi AccEss control layer7.com

Office 365 and Azure Active Directory Identities In-depth

5 OAuth Essentials for API Access Control

EXTENDING SINGLE SIGN-ON TO AMAZON WEB SERVICES BEST PRACTICES FOR IDENTITY FEDERATION IN AWS E-BOOK

Contents Introduction... 5 Configuring Single Sign-On... 7 Configuring Identity Federation Using SAML 2.0 Authentication... 29

Architecture Assessment Case Study. Single Sign on Approach Document PROBLEM: Technology for a Changing World

Introduction to Windows Azure. Managing Windows Azure. Module Manual. Authors: Joey Snow

Sentinet for Microsoft Azure SENTINET

Novell Access Manager 3.1

Liferay Security Features Overview. How Liferay Approaches Security

CA SiteMinder. Federation Manager Guide: Legacy Federation. r12.5

John Heimann Director, Security Product Management Oracle Corporation

App Gateway Deployment Guide

Introduction... 5 Configuring Single Sign-On... 7 Prerequisites for Configuring Single Sign-On... 7 Installing Oracle HTTP Server...

How to Configure SSL VPN Portal for Forcepoint NGFW TECHNICAL DOCUMENT

Oracle Access Manager Configuration Guide

Enterprise Guest Access

Integration Patterns for Legacy Applications

SAML-Based SSO Solution

API Manager Version May User Guide

OpenIAM Identity and Access Manager Technical Architecture Overview

Cloud Access Manager Overview

Unified Secure Access Beyond VPN

INCREASE APPLICATION SECURITY FOR PCI DSS VERSION 3.1 SUCCESS AKAMAI SOLUTIONS BRIEF INCREASE APPLICATION SECURITY FOR PCI DSS VERSION 3.

Service Mesh and Microservices Networking

Inside Symantec O 3. Sergi Isasi. Senior Manager, Product Management. SR B30 - Inside Symantec O3 1

ISA 767, Secure Electronic Commerce Xinwen Zhang, George Mason University

SSO Integration Overview

Qualys SAML 2.0 Single Sign-On (SSO) Technical Brief

Microsoft Architecting Microsoft Azure Solutions.

IBM Secure Proxy. Advanced edge security for your multienterprise. Secure your network at the edge. Highlights

ArcGIS Server and Portal for ArcGIS An Introduction to Security

How to social login with Aruba controller. Bo Nielsen, CCIE #53075 (Sec) December 2016, V1.00

DreamFactory Security Guide

Sentinet for BizTalk Server SENTINET

Phil Schwan Technical

Enterprise Access Gateway Management for Exostar s IAM Platform June 2018

W H IT E P A P E R. Salesforce Security for the IT Executive

How to Configure Authentication and Access Control (AAA)

HySecure Quick Start Guide. HySecure 5.0

Introduction. The Safe-T Solution

Administering Jive Mobile Apps for ios and Android

DATACENTER MANAGEMENT Goodbye ADFS, Hello Modern Authentication! Osman Akagunduz

CA SiteMinder Federation

Related Labs: Introduction to Universal Access and F5 SAML IDP (Self-paced)

Security Information & Policies

O365 Solutions. Three Phase Approach. Page 1 34

Ramnish Singh IT Advisor Microsoft Corporation Session Code:

SAML-Based SSO Solution

Why Microsoft Azure is the right choice for your Public Cloud, a Consultants view by Simon Conyard

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

Google Identity Services for work

SAS and F5 integration at F5 Networks. Updates for Version 11.6

Access Management Handbook

AKAMAI WHITE PAPER. Enterprise Application Access Architecture Overview

Overview. Premium Data Sheet. DigitalPersona. DigitalPersona s Composite Authentication transforms the way IT

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

CA SiteMinder Solution Requirements Specification

Kony MobileFabric. Release Notes. On-Premises. Release 6.5. Document Relevance and Accuracy

Using Microsoft Azure Active Directory MFA as SAML IdP with Pulse Connect Secure. Deployment Guide

Standards-based Secure Signon for Cloud and Native Mobile Agents

Guide to Deploying VMware Workspace ONE. VMware Identity Manager VMware AirWatch 9.1

Introducing. Secure Access. for the Next Generation. Bram De Blander Sales Engineer

How-to Guide: Tenable Core Web Application Scanner for Microsoft Azure. Last Updated: May 16, 2018

Increase user productivity and security by integrating identity management and enterprise single sign-on solutions.

Oracle Identity and Access Management

Introduction. SecureAuth Corporation Tel: SecureAuth Corporation. All Rights Reserved.

Integrating AirWatch and VMware Identity Manager

About This Document 3. Overview 3. System Requirements 3. Installation & Setup 4

Overview SENTINET 3.1

Managing Your Privileged Identities: The Choke Point of Advanced Attacks

ArcGIS Enterprise Security: An Introduction. Gregory Ponto & Jeff Smith

Today s workforce is Mobile. Cloud and SaaSbased. are being deployed and used faster than ever. Most applications are Web-based apps

The Now Platform Reference Guide

Yubico with Centrify for Mac - Deployment Guide

Secure single sign-on for cloud applications

Pulse Policy Secure. Identity-Based Admission Control with Check Point Next-Generation Firewall Deployment Guide. Product Release 9.0R1 Document 1.

Oracle Access Manager Integration Oracle FLEXCUBE Payments Release [Feb] [2018]

<Partner Name> <Partner Product> RSA SECURID ACCESS Implementation Guide. Pulse Connect Secure 8.x

Przejmij kontrolę nad użytkownikiem, czyli unifikacja dostępu do aplikacji w zróżnicowanym środowisku

THE SECURITY LEADER S GUIDE TO SSO

Zero Trust in Healthcare Centrify Corporations. All Rights Reserved.

RSA SecurID Ready Implementation Guide. Last Modified: December 13, 2013

Guide to Deploying VMware Workspace ONE. DEC 2017 VMware AirWatch 9.2 VMware Identity Manager 3.1

MarkLogic Server. MarkLogic Server on Microsoft Azure Guide. MarkLogic 9 January, 2018

NGFW Security Management Center

Cisco ISE Features. Cisco Identity Services Engine Administrator Guide, Release 1.4 1

VMware Workspace ONE Quick Configuration Guide. VMware AirWatch 9.1

Integration Guide. SafeNet Authentication Manager. Using SAM as an Identity Provider for SonicWALL Secure Remote Access

Passwords Are Dead. Long Live Multi-Factor Authentication. Chris Webber, Security Strategist

Five9 Plus Adapter for Agent Desktop Toolkit

Transcription:

CA SSO Cloud-Enabled with SSO/Rest

SSO/Rest Solves Many Challenges Applications in the Cloud AJAX / Mobile / Thick Client Application Integration "Agent-less" Infrastructure Server-side Application Integration 5 SSO/Rest Use Cases WAM-as-a-Service 2

A Common Quandary! Key Question How do we leverage our existing WAM infrastructure to handle platforms & applications in the public cloud? The Situation Constraints 50+ applications protected by CA SSO NO new firewall ports Multiple user directories NO cloud-to-data center VPNs Multiple Password policies Multiple authentication mechanisms including 2FA NO syncing/pushing employee credentials to the cloud 3

But is this just Federation? NO! Unlike Federation, SSO/Rest supports every security feature you have come to trust and depend on, EVEN IN THE CLOUD 4

future business www.your website.com future business www.your website.com Remember: Federation is NOT the Same as Web Access Management Federation Web Access Management (WAM) Policy Enforcement Point (PEP) Authentication One-time handoff from partner IDP Limited logout capability Perimeter Defense Audit Policy Decision Point (PDP) Access control Session lifecycle management 5

A Complete Web Access Management Solution 06 01 Centralized Audit Authentication Management 05 Control Session Duration Web Access Management Access Control Enforcement 02 04 Idle Session Timeout Single Sign On 03 6

WAM Gaps in the Cloud 06 01 Centralized Audit Authentication Management 05 Session Control Maximum Session Time-to-Live Duration Web Access Management (Gaps in the Cloud) Access Control Enforcement 02 04 Idle Session Timeout Single Sign On 03 7

WAM Gaps in the Cloud All Solved by SSO/Rest 06 01 Centralized Audit Authentication Management 05 Session Control Maximum Session Time-to-Live Duration Web Access Management (Gaps in the Cloud) Access Control Enforcement 02 04 Idle Session Timeout Single Sign On 03 8

Customer Success Stories Seamless and Secure Integration Fortune 50 retail company makes an acquisition, and has seamlessly and securely integrated the new web apps with its ecommerce portal, without having to bring the apps in-house or creating a VPN to the new company HTML5 CSS3 js XML PHP Cloud Acquired Company Existing Web Apps ecommerce Portal Successfully Moving.Net applications to Microsoft Azure Fortune 50 finance company successfully moves its.net applications to Microsoft Azure while preserving all of its SSO integrations, authentication and access policies, and audit capabilities ASP.NET C# IIS.Net Applications.NET Microsoft Azure 9

The SSO/Rest Solution SSO/Rest combines existing and emerging technologies to extend the perimeter of your IAM solution safely and securely into your public Cloud platforms A B C D Rest based- lightweight Engineered to solve this problem Easy to use, handles latency, transparent. No firewall holes - secure SSO/Rest! 10

SSO/Rest Solution Architecture Cloud Corporate Network Browser call to cloud application SSO/Rest session validation request CA SSO Agent traffic Browser SSO/Rest Plugin SSO/Rest Gateway CA SSO (aka SiteMinder) Policy Server Cloud Apps Response (with updated SMSESSION cookie) JSON reply from SSO/Rest Policy Server Response Legend Browser HTTP traffic SSO/Rest HTTP traffic CA SSO Agent tunnel 11

Your App Runs in the Cloud But CA SSO Thinks its in your Own Data Center 12

SSO/Rest Web Services Endpoints Look Mom! No VPN! Login Gateway Update Session Enable / Disable SSO/Rest Engine Validate Session Change Password isprotected isauthorized 13

Highlights from our latest release, SSO/Rest 3.0: Pluggable logic for custom request handling: Create your own ACO parameters with our annotationdriven API Plugin self-registration Give app teams the self-service capability to register plugins, or orchestrate provisioning of new app instances Extended Realm ACO Apply agent parameters at the realm level 14

More highlights from our latest release: Management console Metrics measurements with Elastisearch Swagger User Interface Fine-grain logging and tracing Automated testing and Self Diagnostic tool 15

SSO/Rest now supports NGINX with an NGINX+ Certified Module Our native, single library plugin integrates NGINX and NGINX+ into your CA SSO solution, allowing you to use the full capabilities of CA SSO with NGINX 16

Also check out our other products: /products Turn CA SSO into your Enterprise 2-Factor Auth Solution with SSO/MobileKey. For more details visit /products/ssomobilekey/ THANK YOU! For More Information, Please Visit IDF Connect, Inc. 2207 Concord Pike #359 Wilmington, DE 19803 Phone: (888) 765-1611 Fax: (888) 765-7284 www.linkedin.com/in/rsand @IDFConnect @rsand2 www.facebook.com/idfconnect

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback