Symantec Access Management

Hello All,

Have a question regarding Confidence Level, request your input:-

- What is the purpose of Confidence Level and how different or similar it is to the Authentication level? Can you please share a use case for Confidence level.

Thank You

Ankur Taneja

Hi Ankur,

Realms Overview - CA Single Sign-On - 12.52 SP1 - CA Technologies Documentation 

If CA Single Sign-On is integrated with a supported risk analysis engine, you can configure a realm with a confidence level. A confidence level represents credential assurance, which is the likelihood that the user requesting the protected resource is legitimate.

Consider the following items:

• A confidence level is based on a numeric scale (0–1000). A higher confidence level corresponds to a higher level of credential assurance.
• You can apply a confidence level to authorization decisions using both access management models. For more information, see Confidence Levels in Policies and Confidence Levels in Applications.
• When an authentication scheme that generates a confidence level authenticates a user, the confidence level is inserted into the session ticket of the user. The user can access any resource requiring a confidence level equal to or greater than this value, as long as the policy or application applies to the user.
• The factors on which a confidence level is calculated are based on the data the risk analysis engine uses to determine credential assurance.

Regards,

Leo Joseph.