The LoginTC SiteMinder Connector is a complete multi-factor authentication solution for CA SiteMinder. The LoginTC SiteMinder Connector features a SiteMinder authentication scheme that adds additional layers of security to your existing SiteMinder deployments with minimal effort.
Prefer Reading a PDF?
Download a PDF file with configuration instructions:
Before proceeding, please ensure you have the following:
logintc-siteminder-connector-x.x.x.zip
Enterprise subscription required
Please contact our sales team for trial access to the LoginTC SiteMinder Connector.
If you have already created a LoginTC domain for your LoginTC SiteMinder Connector, then you may skip this section and proceed to Installation.
Use Default Domain Settings
Domain settings can be modified at any time by navigating to Domains > Your Domain > Settings.
The following instructions will guide you in installing the LoginTC SiteMinder Connector on your SiteMinder Policy Server.
LoginTCAuthScheme.jar
: The LoginTC SiteMinder authentication schemeform/
: A directory with a sample web forms credential collector (FCC)The following steps will guide you in installing the LoginTC SiteMinder authentication scheme on your SiteMinder Policy Server:
LoginTCAuthScheme.jar
to your SiteMinder Policy Server host (e.g. to /path/to/siteminder/bin
)JVMOptions.txt
file (located in /path/to/siteminder/config
) and add LoginTCAuthScheme.jar
to java.class.path
. Separate items with a colon (:
). E.g. the line should look similar to:
-Djava.class.path=/opt/ca/siteminder/config/properties:/opt/ca/siteminder/bin/jars/smbootstrap.jar:/opt/ca/siteminder/bin/LoginTCAuthScheme.jar
This optional installation step will provide you with a LoginTC-branded web login form for your SiteMinder Web Agent. You may skip this section if your organization already has a web login form.
form/
directory to the host(s) where your HTTP server and SiteMinder Web Agents are runningform/
directory can be viewed by unauthenticated users.This section will guide you through the process of registering and adding the LoginTC authentication scheme to your realm.
The following steps will register the LoginTC authentication scheme and make it available for your realms.
smjavaapi
com.cyphercor.logintc.siteminder.LoginTCAuthScheme <parameter>
where <parameter>
is the following parameters concatenated by commas:Position | Field | Example |
---|---|---|
1 | Protocol | https |
2 | LoginTC Admin Host | cloud.logintc.com |
3 | LoginTC Admin Port | 443 |
4 | Domain ID | 2fd4e1c67a2d28fced849ee1bb76e7391b93eb12 |
5 | Timeout (s) | 60 |
6 | Path to web form | /logintc.fcc |
7 | Debug Mode | true |
For example, replace <parameter>
with https,cloud.logintc.com,443,2fd4e1c67a2d28fced849ee1bb76e7391b93eb12,60,/logintc.fcc,true
The following steps will enable LoginTC multi-factor authentication for one or more of your realms.
Your realm is now protected by LoginTC multi-factor authentication. When you attempt to access a protected web resource, you will be redirected to the login form that you specified in the LoginTC authentication scheme parameter.
User ManagementThere are several options for managing your users within LoginTC:
To debug the LoginTC Authentication Scheme, enable debug mode (by setting the 7th parameter in <parameter>
to true
) and restart your SiteMinder Policy Server. The LoginTC authentication scheme outputs logs to /tmp/LoginTCAuthScheme.log
.