Out of support This documentation supports the 8.0 version of BMC Atrium Single Sign-On, which is in "End of Version Support." However, the documentation is available for your convenience. You will not be able to leave comments.Click here to view the documentation for a supported version of Remedy Single Sign-On.

Using CAC for authentication

The Common Access Cards (CAC) support within BMC Atrium Single Sign-On leverages the Certificate module of OpenSSO. To simplify the user experience, many of the required steps to use the Certificate module have already been performed.

Setting up CAC to use for authentication involves:

  1. Modifying the Tomcat server
  2. Importing DoD CA certificates
  3. Validating CAC certificates
  4. Specifying CAC users
  5. Enabling CAC Chain authentication

Beyond the scope of this document is acquiring CAC cards, the Department of Defense (DoD) CA certificates, and the installation and configuration of card readers and middleware software for these card readers. The administrator who is configuring BMC Atrium Single Sign-On for CAC authentication is assumed to be familiar with these topics.

BMC Atrium Single Sign-On supports using CAC cards through the ActivClient software from ActivIdentity. See the ActivClient documentation for the configuration steps needed for clients to use CAC cards, card readers, and browser setup.

For information about common problems associated with CAC, see Troubleshooting CAC authentication.
 For information about certificate usage, see Certificate usage with CAC authentication.

Related topics

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*