Configuring a front-end authentication method
Microsoft® Active Directory® authentication
Configuring smart card authentication
LDAP authentication
Microsoft® Active Directory® LDS
389 Directory Service
Novell® eDirectory™
Windows Azure™ Active Directory® authentication
SAML federated
WS-Federated
Social authenticators
Integration with password management applications
Primary credentials
Configuring user front-end authentication method selection
Adding a web application
Integrated Windows Authentication
Form fill authentication
Proxy-less form fill authentication
SAML federation
Configuring advanced SAML token settings
Configuring advanced WS-Federation token settings
OpenID Connect/OAuth 2.0
Manual user provisioning
HTTP basic authentication
HTTP header value
No back-end SSO
Exporting an application configuration template
Forwarding claims to federated applications
Adding HTTP headers to proxy applications
Configuring step-up authentication
Configuring front-end authenticators
Configuring each application
Configuring for external users
Configuring Defender as a Service with Cloud Access Manager
Using Dell's Security Analytics Engine
Enabling Dell's Security Analytics Engine
Configuring Cloud Access Manager to use Dell's Security Analytics Engine for access control
Managing your SSL certificate
Obtaining a signed certificate
Replacing an expiring certificate
Installing a fully signed certificate from a certificate archive file
Installing a certificate authority certificate
Changing the Cloud Access Manager service account password
Cloud Access Manager IIS Application Pool
Dell Redistributable Secure Token Server
Front-end authenticators
Reporting
Customizing Dell™ One Identity Cloud Access Manager
RADIUS server
Complete the RADIUS Connection Settings to allow Cloud Access Manager to connect to an authentication service using the Remote Authentication Dial-In User Service (RADIUS) protocol. Please refer to Table 1 for a detailed explanation of each feature.
Smart card
|
1 |
Select the Enable certificate revocation list checking box. This will prompt Cloud Access Manager to check the Certificate Authority's Certificate Revocation List (CRL) to ensure the user's certificate has not been revoked. If the user's certificate has been revoked, the login request will be denied. |
|
3 |
For detailed instructions on smart card configuration, please refer to Configuring smart card authentication.
Defender as a Service
Defender as a Service is a cloud based authentication service that allows users to self-register and then access their one time passwords on both mobile and desktop devices. For further information on accessing Defender as a Service and using Cloud Access Manager to authenticate Defender as a Service users, please refer to Configuring each application.
|
Enter the name of the attribute from the primary directory (Active Directory / LDAP) whose value is to be relayed to the Defender as a Service authentication service to identify the user. The default attribute is mobile, this usually contains the user's mobile telephone number. | |
Configuring each application
|
1 |
Navigate to the Front-end Authentication page and click the name of the authenticator that you want to configure. |
|
2 |
Click the Two Factor Authentication tab. |
|
3 |
Select Use two factor authentication for specific applications. |
|
4 |
Configure the RADIUS connection settings if not already configured, please refer to Configuring a front-end authentication method for further information. |
|
1 |
Navigate to the Applications page and click the name of the application that you want to configure. |
|
2 |
Click the Two Factor Authentication tab. |
|
4 |
If you are configuring role based access, select the required roles from the Standard authentication roles list and click Add Role to add the role to the list of Two factor authentication roles.  |