The SBC Core supports the use of PKI certificates  such as those found in U.S. Department of Defense's Common Access Card (CAC) for authentication. It enables password-less authentication in which the authentication of user is conducted through validation of the PKI certificates (for example, CAC) rather than the standard form based username/password authentication.

On SBC main screen, go to Administration > Users and Application Management > Ema. The Ema window is displayed.

Figure 1: Users and Application Management - Ema


 Table 1: Users and Application Management - Ema

Parameter

Description

Client Auth Method

This parameter describes the authentication method for the EMA client. The options are:

  • usernamePasswordOnly (default): The authentication results in a username/password authentication mode.
  • pkiCertOnly: The authentication results in a password-less authentication mode in which the validation of a user is conducted through validation of the PKI Certificate rather than the standard form based authentication.
  • usernamePasswordOrPkiCert: The user can login through PKI certificate. If the certificate is not provided, user is offered username/password authentication mode.



  • No labels