What we're doing with Single Sign-On, we're providing security to different applications, like protecting the URLs. The other thing is, we're using SAML. With SAML we are connecting to the external vendor, external partner, and providing the customer a single sign-on to at the second domain.
It's more efficient. We're providing immense security to the applications, to Chase. We're securing 70 million customers in Chase.
I find that SAML is the best thing we're using right now because there is no need for creating the external account. If you take a partner like Disney World, if a Chase customer wants to log in to Disney World, then it is easy for them to log in with the same credentials, whatever we have at Chase. There is no need to make a new account or enter in the same data.
So, the Chase user, if he wants to purchase something on Disney World, tickets for example, he doesn't need to give his details to Disney World. He can use the information with the details, whatever we have, in the Chase DB. We're just, as part of the transaction, sending the details to Disney World and he completes the transaction with the details. So in that case, we're providing security to the user data.
We're working on a mobile API gateway. I am really interested to learn more about that.
It's stable, but we are finding some compatibility issues. We're still working with CA people. We're trying to improve the enhancements.
Scalability is good so far. It is user friendly, so we are not experiencing many complications when using this application.
Good support. We work with CA technicians frequently, engineers very frequently. They're very helpful.
Whenever we go to them with an issue, they'll first look at the existing DB. If the same kind of issue happened previously, they'll try to pull that information and provide us the feedback right away. If it is a new issue, they will really work hard to get the issue done, as soon as possible.
There is not doubt CA site minder /SSO is one a stable product, CA had done this aquisition in 2003. Out of few stable SSO solution . I must put CA on the top. Its easy to customize , reliable & super & secure transactions. CA combine SSO & Fedration to simplifize their licensing. We recently implemented a SSO solution to one of complex env where we had enabled SSO for 10 application and we will contiune. So far no complains . Solution running amazingly .