The following graphic shows the processing that occurs when SiteMinder calls APS during User Authentication. SiteMinder passes the result of its authentication to APS (success or failure). It shows what APS does if SiteMinder has already rejected the login (almost always because the user's password is bad):
The process description continues in the following graphic to explain what APS processing occurs when SiteMinder has indicated a successful authentication (at least until the APS invocation):
The following graphic shows how APS checks whether a user is disabled. Since SiteMinder does not "know" about APS disabling, it has already approved the authentication. If the user has already been approved by SiteMinder, APS must check the disabled status first:
If the user passes all of these tests, then conditions like user inactivity and password expiration must be checked, as shown in the following graphic:
|
Copyright © 2014 CA.
All rights reserved.
|
|