Organization-based Authentication Login URLs
The organization for authentication can be specified in the User Interface Login URL by defining the org Parameter or the domain Parameter. The organization of a request for authentication is determined from the following, in order of precedence:
-
The domain parameter.
-
The org parameter.
-
The value of the DNS Alias Names (Organization alias names) attribute in the Administration Service.
After calling the correct organization, the authentication module(s) to which the user will authenticate are retrieved from the Organization Authentication Configuration attribute in the Core Authentication Service. The login URLs used to specify and initiate organization-based authentication are:
http://server_name.domain_name:port/amserver/UI/Login http://server_name.domain_name:port/amserver/UI/Login?domain=domain_name http://server_name.domain_name:port/amserver/UI/Login?org=org_name
If there is no defined parameter, the organization will be determined from the server host and domain specified in the login URL.
Note –
If a user is member of and is authenticated to a specific organization, and tries to authenticate to different organization, the only two parameters that are passed are org and module. For example, if User1 is a member of and authenticates to orgA and then tries to switch to or authenticate to orgB, the user will receive a warning page requesting to either start a new authentication to orgB with the module instance specified for orgB, or return to the existing authenticated session with orgA. If the user chooses to authenticate to orgB, only the organization name and module name (if specified) are passed and honored for determining the new authentication process.
- © 2010, Oracle Corporation and/or its affiliates