Authentication Configuration Services

The Authentication framework includes the following pluggable and customizable services:

• General Authentication Service

• Authentication Configuration Service

General Authentication Service

The General Authentication Service is used for server-related attribute configuration. (Some of the attributes described in this service are default attributes for all Access Manager authentication modules.) Configuration is available in each configured realm. The General Authentication Service enables the Access Manager administrator to define default values for a realm's authentication parameters. These values can be used if no overriding value is defined in the specified authentication module. The default values for the General Authentication Service are defined in the amAuth.xml file and stored in the Access Manager information tree after installation. For more information, see Chapter 4, Managing Authentication, in Sun Java System Access Manager 7.1 Administration Guide.

Authentication Configuration Service

The Authentication Configuration Service describes all the dynamic attributes for service-based authentication. This service is used for configuring roles. When you assign a service to a role, you can also assign other attributes such as a success URL or an authentication post-processing class to the role. For more information, see Role-based Authentication in Sun Java System Access Manager 7.1 Administration Guide.