Previous Topic: Authentication Processing for Hierarchical Policies

Next Topic: Rejected Authentication Attempts

Successful Authentications

OnAuthAccept rules fire when all of the following are satisfied:

At this point, the Policy Server collects OnAuthAccept entitlements from the longest matching realm, and any realms above it in the hierarchy of nested realms. In the example in the previous figure, if a user is successfully authenticated for the resource /home/employees/managers/manager.html, the Policy Server collects any OnAuthAccept entitlements for the /managers realm, then the /employees realm, and finally the /home realm.


Copyright © 2010 CA. All rights reserved. Email CA about this topic