Previous Topic: Stand–Alone Login Page

Next Topic: Performance Tuning

Embedded Form on a Web Portal

In this use case, a form is embedded on a web portal home page. Users enter credentials in the form and are redirected to the protected resource upon authentication. Specifically:

The following diagram illustrates the authentication process for this use case:

Illustration of the authentication process using an embedded form in a web portal

  1. A user navigates to the web portal home page.
  2. The Web Agent contacts the Policy Server, which determines that the resource is unprotected.
  3. The user submits invalid credentials. The credentials are posted to the login.fcc file and processed by the FCC.
  4. The FCC forwards the credentials to the Policy Server.
  5. The Policy Server determines that the credentials are invalid and notifies the FCC.
  6. The FCC inserts the SMTRYNO cookie into the web browser of the user and redirects the user to the login page. The login page appears with an error message. The error message states that invalid credentials were supplied and to try again.

    Note: Although not illustrated, if the user accessed the protected resource directly, the login page would appear without an error message because the web browser would not contain the SMTRYNO cookie.

  7. The user submits invalid credentials. The credentials are posted to the login.fcc file and processed by the FCC.
  8. The FCC forwards the credentials to the Policy Server.
  9. The Policy Sever determines that the credentials continue to be invalid and notifies the FCC.
  10. The user has exceeded the maximum number of failed authentication attempts and is redirected to a page that displays a failed authentication message.


Copyright © 2010 CA. All rights reserved. Email CA about this topic