The most valuable features are security and ease-of-use.
Tokenization of the web applications is easy for application owners to integrate with the tool. On the back end the dev side, and the deployment cycle with web agents and policy creation are easy.
Improvements to My Organization
It's seamless with several hundred internal applications, which is a time and frustration-saving mechanism. It definitely gives a productivity increase with less time logging into things instead of logging in from application to application, while maintaining the security layer.
Room for Improvement
We’d like them to go back to the C version of the admin console. It was much smoother than the web-based version. Everything else is pretty good.
Very stable product. The only time we’ve had problems with it is deep behind SiteMinder, which feels the ramifications. The application we’re protecting usually has the issue, not the SiteMinder/SSO itself.
Very easy to scale. They have a good sizing guide it vertically scales very easily.
Customer Service and Technical Support
Once you get past the first level, it’s good support. Typically once you’ve supported the CA product for a couple of years, you probably know more than first-level support, so it’s frustrating to explain to them the issue.
It was already in production when I joined.
It’s definitely an industry leader in the web access realm. It’s easy to deploy and integrate.
You need to understand the overall design of your web infrastructure, and what do you want to protect – the entry point or the entry point and application server? Design questions, really. You need to decide whether you want fine-grain or course-grain authorization. For the CA solution, make a support matrix and understand other peripheral products in the environment.