Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

LDAP Authentication Provider: Common

Configuration Options     Related Tasks     Related Topics

This page displays basic information about this LDAP Authentication provider. You can also use this page to set the JAAS Control Flag to control how this provider is used in the login sequence.

Authentication is the process whereby the identity of users or system processes are proved or verified. Authentication also involves remembering, transporting, and making identity information available to various components of a system when that information is needed.

By default, the WebLogic Authentication provider is configured in the default security realm (myrealm). The WebLogic Authentication provider allows you to edit, list, and manage users, groups, and group membership. User and group information is stored in the embedded LDAP server.

The Control Flag attribute is the Java Authentication and Authorization Service (JAAS) control flag that determines how the LoginModule for the WebLogic Authentication provider is used in the login sequence.

You can use a custom Authentication provider instead of the WebLogic Authentication provider. For a custom Authentication provider to be available in the WebLogic Server Administration Console, the MBean JAR file for the provider must be in the WL_HOME\lib\mbeantypes directory.

Configuration Options

Name Description
Name

The name of the Java class used to load the LDAP Authentication provider.

MBean Attribute:
LDAPAuthenticatorMBean.ProviderClassName

Changes take effect after you redeploy the module or restart the server.

Description

A short description of the LDAP Authentication provider.

MBean Attribute:
LDAPAuthenticatorMBean.Description

Changes take effect after you redeploy the module or restart the server.

Version

The version number of the LDAP Authentication provider.

MBean Attribute:
LDAPAuthenticatorMBean.Version

Changes take effect after you redeploy the module or restart the server.

Control Flag

Returns how the login sequence uses the Authentication provider.

A REQUIRED value specifies this LoginModule must succeed. Even if it fails, authentication proceeds down the list of LoginModules for the configured Authentication providers. This setting is the default.

A REQUISITE value specifies this LoginModule must succeed. If other Authentication providers are configured and this LoginModule succeeds, authentication proceeds down the list of LoginModules. Otherwise, control is return to the application.

A SUFFICIENT value specifies this LoginModule need not succeed. If it does succeed, return control to the application. If it fails and other Authentication providers are configured, authentication proceeds down the LoginModule list.

An OPTIONAL value specifies this LoginModule need not succeed. Whether it succeeds or fails, authentication proceeds down the LoginModule list.

MBean Attribute:
LDAPAuthenticatorMBean.ControlFlag

Changes take effect after you redeploy the module or restart the server.

Related Tasks

Related Topics


Back to Top