AR System can be CAC enabled using the Client-side intercept technology provided (also sometimes referred to as SSO, although that's a misnomer in this case since the goal is not single sign-on). http://www.bmc.com/supportu/documents/57/12/65712/65712.pdf The issue seems to come down to a customer's/base's individual interpretation of the OMB directive. Some feel that it is sufficient to challenge for the CAC when logging into the operating system - then using that authentication to enter other applications. In other words, when attempting to log into AR System, AR System will use the authentication provided through Windows Authentication to confirm the authentication is valid. That means AR System does not need to query the CAC directly. Some customers/bases have a more strict interpretation that the CAC should be challenged for entering an application even if already logged into the OS. In this case, the login page is intercepted and the CAC challenged. This would require the CAC client software to be loaded locally on the machine from which the login attempt is made. The CAC client software queries the card and then authenticates the user, enabling the log in process to AR System. Hope this helps, -David J. Easter Sr. Product Manager, Service Management Business Unit BMC Software, Inc. The opinions, statements, and/or suggested courses of action expressed in this E-mail do not necessarily reflect those of BMC Software, Inc. My voluntary participation in this forum is not intended to convey a role as a spokesperson, liaison or public relations representative for BMC Software, Inc. ________________________________
From: Action Request System discussion list(ARSList) [mailto:[EMAIL PROTECTED] On Behalf Of john rosquist Sent: Tuesday, February 26, 2008 2:53 PM To: [email protected] Subject: CAC card enablement ** Does anyone know the status of Remedy and CAC cards with in the DoD community? I am looking for actual requirements and how and if they are being met. I know that portals can broker the CAC authentication for the midtier. But I have the understanding that DoD wants the application source to be CAC enabled too and I take this to mean the Remedy ARS server. Is this other people understanding? Thanks, John ________________________________ Looking for last minute shopping deals? Find them fast with Yahoo! Search. <http://us.rd.yahoo.com/evt=51734/*http://tools.search.yahoo.com/newsear ch/category.php?category=shopping> __Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are" html___ _______________________________________________________________________________ UNSUBSCRIBE or access ARSlist Archives at www.arslist.org Platinum Sponsor: www.rmsportal.com ARSlist: "Where the Answers Are"
