How to Configure Web Authentication for an Access Type in Service Desk

Document ID : KB000094267
Last Modified Date : 03/05/2018
Show Technical Document Details
Introduction:
You can configure the web authentication and validation type to specify how roles assigned to this access type are authenticated when users attempt to access the CA products. 
  • Select Security and Role Management, Access Types on the Administration tab.
  • The Access Type List page opens.
  • Select the Access Type which you would like the authentication to be updated for.
Instructions:
Complete the following fields in the Web Authentication tab.
 
  • Allow External Authentication
    Select this check box if you want to allow contacts to be authenticated externally, for example by the HTTPD server or the operating system. If you select this option, users with this access type are validated by the appropriate external method as configured during installation.Checks ensure that no external validation has taken place (for example, that the user has not attempted access through a non-secure server) and that the user is defined as a valid contact in the system using the login ID. Then, it uses the access type to determine the correct interface to use.
  • Validation Type
    Defines how users are authenticated when an external authorization is either not permitted or fails (for example, if the user is attempting access through a non-secure server). The available options are:
    • No Access
      Denies access to CA products unless external authentication is allowed and is valid.
    • Open
      Access to the CA products are always allowed, with no additional authentication required.
    • OS
      Access to the CA products are allowed through operating system user name and password.
    • PIN / PIN Number
      Users of this type can access only if they enter the correct value for the PIN field in their contact record. If you select the PIN option, you can choose which field in the contact record stores the PIN by entering the field attribute name in the PIN Field edit box.
    • CA EEM
      Access to the CA products are allowed through CA EEM. This option is available only if CA SDM is integrated with CA EEM.
    • OS-Use Operating System
      When the Administration Access Type Validation Type drop-down is set to OS-Use Operating System Authentication and if you want to login using the CASMAdmin user, you must first create the CASMAdmin user in the Operating System for the login to be successful.