RADIANTONE DEPLOYMENT GUIDE: Computer Associates (CA) eTrust SiteMinder

This integration guide documents how to use the RadiantOne Identity and Context Virtualization Platform to:

1. Simplify complex authentication schemes in SiteMinder deployments by using RadiantOne to enable distributed authentication to multiple disparate identity data sources within the enterprise. Authenticating to more than a limited number of resources can pose significant challenges for deploying SiteMinder.
   
   
2. Enable flexible authorization to take full advantage of SiteMinder Policy Server using RadiantOne to provide the ability to join objects from multiple data sources. Joins allow you to create a complete user profile and enable more specific authorization rules to be developed. 
   
   
3. Significantly reduce custom integration costs and deployment time of SiteMinder when users exist in multiple data sources, such as LDAP enabled directories, databases accessible via JDBC, or custom applications. RadiantOne can be extremely valuable in a SiteMinder deployment by creating a federated namespace and make these sources logically appear as a single LDAP accessible source.

• Overview
• Policies
  • User Directories
  • Rules
  • SiteMinder Architecture with RadiantOne
• Use Cases:
• Authentication
• Authorization
• Unified Identities
• Product Configuration
  • Extract the Schemas from the User Data Stores
    
  • Map Objects and Attributes to a Common Format for SiteMinder
    
  • Build Virtual Directory Trees from the Data Stores
    
  • Aggregate Virtual Directory Trees to Build a Common Namespace
    
  • Configure a User Directory for SiteMinder Based on the RadiantOne VDS .
  • Create a Policy using the LDAP Expression Editor