2. If this is the first time during
a session that the user is accessing this partner
application, the partner
application transparently directs
the user to the Login Server to obtain authentication
credentials.
3. The Login Server authenticates the user as described in "Authenticating to the Login Server".
4. The Login
Server transparently redirects the user to the partner application by using
a URL
with an
encrypted parameter containing the user's identity.
5. The partner application:
-Decrypts the parameter
-Identifies the user
-Establishes its own session management (for example, determining what, if any, access privileges to grant to the user)
-Sets a partner application cookie so that subsequent user access does not require a redirect to the Login Server