Agent Guide › Configure the SiteMinder Authentication Provider › Configure the SiteMinder Authentication Provider in WebLogic › Determine How Users Are Authenticated › Configure the Execution Order

Configure the Execution Order

You can list the order in which WebLogic executes authentication providers in the WebLogic Server Administration Console.

When a user attempts to access a protected resource, WebLogic executes the first authentication provider in the list. After the first authentication attempt, WebLogic determines whether to execute the next authentication provider based on the following criteria:

• The outcome of the first authentication attempt
• The control flag setting for the authentication provider that performed the authentication

For example, if the SiteMinder Authentication Provider is configured first in the execution order with control flag setting SUFFICIENT and it fails to authenticate a user, the user request is rejected immediately. WebLogic does not execute any other Authentication Providers (unless other providers are set to REQUIRED).

To configure the execution order:

1. Start the WebLogic server and the WebLogic Server Administration Console.
2. In the navigation frame on the left of the console, click the Security Realms node in the Domain Structure list.
3. Click on the name of the realm you are configuring (for example, myrealm).
4. Click the Providers tab.
5. If necessary, click the Authentication tab to display the Authentication Providers list.
6. Click Reorder.
7. In the Reorder Authentication Providers list box, select a configured provider and use the arrows to change its position in the list.
8. Click OK.