Can Data Feed Accounts be exempted from SSO login?
If Single Sign On is enabled, is there any way to exempt the sync data feeds user accounts and api service accounts from Single Sign On in the RSA Archer 6.6P4 platform itself?
If Single Sign on is enabled, will the local Archer to Archer data feeds work as expected without exemption from SSO?
- archer data feed
- Community Thread
- data feed accounts
- Forum Thread
- RSA Archer
- RSA Archer Suite
- Single Sign On
Thank You IIya,
we are currently using SiteMinder agent for Single Sign on, unfortunately there is no feature in SiteMinder to exempt the service accounts from authentication requirements. I am not sure, if I use AD FS, would it be able to exempt the accounts from authentication? If I exclude API node from the authentication, will it be able to take the regular AD users through the Authentication interface?
we are using a api user account that is being used for API calls from another software and data are exchanged through api, that integration will break if I don't exclude the api node. In this case, SiteMinder team says, if I exclude api, the regular users will not face the SiteMinder challenge. They have suggested to create a separate URL for the Service account users to reach the api and they can exempt that from SM. Do you think it is possible to create a separate URL for Archer service accounts? if so, how can I do that without breaking regular operations of Archer 6.6P4?
Archer API nodes, such as, RSAarcher/ws, RSAarcher/api, RSAarcher/contentapi are not used for SSO authentication.
Thus, I do not understand how it will break regular user authentication if you excludes these api nodes from shielding.
Or I got the information totally wrong.
I have excluded Archer API nodes, such as, RSAarcher/ws, RSAarcher/api, RSAarcher/contentapi from SiteMinder policy, it is working great in Test instance, but when I installed site minder agent in production the data feeds and the api integration did not work, so had to remove the agent from the server.