|
|
|
When you configure an authentication provider in the WebLogic Administrative Console, you set the control flag on the General tab on the properties page for the provider.
The Control Flag determines how much weight an authentication decision has in an environment that includes multiple Authentication Providers. You can select one the following options for the control flag:
|
REQUIRED |
This Authentication provider is always called, and the user must always pass its authentication test. After this authentication provider attempts to authenticate the user, WebLogic executes the other configured authentication providers, regardless of whether the authentication attempt succeeded. |
|
REQUISITE |
The authentication provider must authenticate the user. After the user is authenticated by the authentication provider, other authentication providers attempt to validate the user. The user can fail to authenticate through any other authentication provider, except providers that have the control flag set to REQUIRED. |
|
SUFFICIENT |
If a user is authenticated by the authentication provider, no other authentication is required (unless another authentication provider has the control flag set to REQUIRED). REQUIRED modules listed after a module flagged SUFFICIENT do not run if it passes. |
|
OPTIONAL |
The user can pass or fail the authentication provider authentication. If all of the authentication providers are set to OPTIONAL, the user must pass at least one authentication test. |
See the WebLogic documentation for more information about the control flag.
| Copyright © 2010 CA. All rights reserved. | Email CA about this topic |