2. If this is the first time during a session that the user is accessing this partner application, the partner
application transparently directs the user to the Login Server to obtain authentication credentials.

3. The Login Server authenticates the user as described in "Authenticating to the Login Server".

4. The Login Server transparently redirects the user to the partner application by using a URL
with an encrypted parameter containing the user's identity.

5. The partner application:

-Decrypts the parameter

-Identifies the user

-Establishes its own session management (for example, determining what, if any, access privileges to grant to the user)

-Sets a partner application cookie so that subsequent user access does not require a redirect to the Login Server