Find White Papers
Home About Contact Help
Free Membership Member Login
Jan 9, 2009
View Popular Research Browse Topics Find Business Solutions RSS Feeds List Your Research
Search the Library                  Advanced Search

CA Siteminder Web Access

CA
By : CA
INFORMATION
Published : Jul 15, 2008
Length : 10
Type : White Paper
 
Download Now
Save for Later
  Email This Page
Overview :
CA SiteMinder Web Access Manager provides policy based authentication and authorisation, supports multiple advanced authentication techniques, identity federation, and single sign on for Web applications. Traditionally, access management infrastructure has been developed separately for each Web application, leading to duplication and limited control and audit capability. SiteMinder provides centralised capabilities plus extensive additional facilities. Butler Group is impressed with its fine-grained authorisation capabilities, support for advanced authentication techniques, support for a good range of user directories, identity federation based on established standards, and the scalable architecture. Overall, SiteMinder is an impressive solution for mid-sized and large companies who use numerous Web applications to deliver sensitive or business critical data.
View All Items By This Company
Browse Related Categories :

Access Control

,

Auditing

,

Compliance

,

Security
 
FUNCTIONALITY
Web applications are used for a wide range of requirements, from delivering financial transactions and line of business applications to pure information dissemination, as well as delivering services to both an internal audience and external partners and customers. Organisations need to control access to Web applications, which often deliver high-value and sensitive data that is subject to regulatory control. Traditionally, user authentication and authorisation mechanisms were built independently and inflexibly for each major Web application, an approach that reduces visibility as well as being cost inefficient. Also, a typical user requires access to multiple Web applications, and without a mechanism for forwarding the user’s credentials to multiple applications (which could be owned by different commercial entities), user fatigue arising from the requirement to log into each application or Web site could set in, leading to lost customers or to security risks such as users resorting to writing passwords down. In addition, Web access technology needs to incorporate authentication tasks performed by partner entities, again to reduce user fatigue and reduce development duplication. Therefore, organisations require a centralised and scalable approach for authenticating users and authorising access to multiple applications, supported by the federation of authentication tasks in a standards-based way.
Product Analysis
CA provides CA SiteMinder Web Access Manager (CA SiteMinder WAM), a Web access management solution that provides fine-grained, policy-governed authentication and authorisation, administrative delegation, identity federation, and Single Sign On (SSO) capabilities. The solution is aimed at large and medium sized organisations with a large portfolio of Web applications and often a significant external Web audience. A part of CA’s Identity and Access Management (IAM) suite, the solution integrates with related solutions such as CA Identity Manager, CA SOA Security Manager for controlled access to Web services and CA Single Sign On for advanced SSO capabilities for non-Web applications.
At its core, the SiteMinder solution comprises two functional components: the Policy Server, and SiteMinder Agents. The Policy Server engine is the Policy Decision Point (PDP) for policies related to authentication and authorisation. The SiteMinder Agents are the Policy Enforcement Points (PEPs) and are deployed on Web servers or via a reverse proxy server to control access to Web server content and application servers. They also regulate access to Java 2 Platform Enterprise Edition (J2EE) components. The Policy Server provides a valuable audit capability which can be used to analyse access history and to aid regulatory compliance
CA SiteMinder WAM supports a wide range of authentication technologies, including X.509 certificates, one-time password (OTP) tokens, and Smart Cards, in addition to the ubiquitous user ID and password. With Web transactions increasingly conducted through multiple steps involving a web of commercially distinct entities, federation capabilities are important and in Butler Group’s opinion CA SiteMinder WAM scores well on this front. The solution supports identity federation through Security Assertion Markup Language (SAML) tokens, and WS-Federation via Microsoft’s Active Directory Federation Services (ADFS)
Regulatory compliance and the mitigation of risks related to loss of reputation from incidents of identity theft (among other security breaches) are key factors driving consolidated Web access management. For large companies, the aforementioned objectives necessitate a solution with high user scalability, careful monitoring of access patterns, and support for a wide range of common applications and Web and application server platforms. In Butler Group’s opinion, CA scores well on all of the aforementioned requirements.
Search the Library                  Advanced Search
Today's Popular Reports This Weeks Most Popular Reports Most Popular Topics Vendor Directory Home
About Us Contact Us List Your Papers Partner With Us Site Map