CA Certificate Authentication and Forced Password Resets

Highlighted
Master Anaplanner/Community Boss

CA Certificate Authentication and Forced Password Resets

Hi Experts.

My client is concerned about the 90 day password reset for their system IDs. If they switch to using a CA (certificate authority) will they still need to reset the password for the system ID they associate the certificate to? I didn't see anything in the documentation about it so I thought I would ask here.

 

The system ID is used in two places. The first is within Informatica using the connector (not HyperConnect, just the regular connector). The other is when using Anaplan Connect 1.4. 

 

If they still must reset the password, can they use SSO? Any other options?

 

Thanks, hope you all can shed some light on what my client should expect and what are their options.

 

Jared


Jared Dolich
4 REPLIES 4
Highlighted
Master Anaplanner/Community Boss

Re: CA Certificate Authentication and Forced Password Resets

@JaredDolich 

 

I think System ID has to be set for No Expiration from company's Network team. Not sure if there is anything that CA will dictate anything.

 

Thanks,

Misbah

Highlighted
Master Anaplanner/Community Boss

Re: CA Certificate Authentication and Forced Password Resets

@Misbah thank you for the response.

I'm still a little confused though.

Will Anaplan still authenticate the system ID if the password expired and they are using a CA?

Will SSO solve the problem, as you suggest?


Jared Dolich
Highlighted
Master Anaplanner/Community Boss

Re: CA Certificate Authentication and Forced Password Resets

@JaredDolich 

 

How we have done it is by having System ID set to no expiration. 

 

However as per Anapedia - if your integration is SSO Enabled, it should work even if passwords have expired 

https://help.anaplan.com/anapedia/Content/Administration_and_Security/Tenant_Administration/Security... 

 

 

Thanks,

Misbah

 
 
Highlighted
Community Boss

Re: CA Certificate Authentication and Forced Password Resets

Hi,

I don't think the certificate is linked to the password, that would make no sense (the goal of the certificate is NOT to use the login/password). the CA will issue private/public keys and that's what the certificate uses.


Nathan Rudman, Anaplan Model Builder