1. The user seeks access to the partner application directly.

2. If this is the first time during a session that the user is accessing this partner application, then the partner
application transparently directs the user to the Login Server to obtain authentication credentials.

3. The Login Server authenticates the user as described in Authenticating to the Login Server.

4. The Login Server transparently directs the user to the partner application. It does this by using a URL
with an encrypted parameter containing the user's identity.

5. The partner application:

-Decrypts the parameter

-Identifies the user

-Establishes its own session management