1 

The user starts a browser and opens the portal service or SRA Gateway service URL, depending on the access scenario being used. 

2 

If portal services are accessed directly, Portal Server returns the anonymous desktop, which includes the login channel. If portal services are accessed through the SRA Gateway, the Gateway redirects the user request to Access Manager. Access Manager returns the login page (by way of the Gateway). 

3 

The user logs in by typing a user ID and password in the appropriate form and clicking Login. 

4 

Access Manager interacts with Directory Server to retrieve the user's profile, which contains authentication, authorization, and application-specific information. 

5 

Access Manager authenticates the user's ID and password against the LDAP directory information and creates a session object.  

6 

When the user has been authenticated, Access Manager returns a session cookie to the user's browser and redirects the browser to Portal Server. 

Portal Server uses the session cookie to interact with Access Manager to access information in the user's profile (cached by Access Manager). Portal Server uses the information to build the user's personalized portal desktop. Portal Server returns the desktop to the user's browser (by way of the Gateway). 

7 

The user reviews his or her portal desktop, and clicks a portal channel. 

8 

Portal Server interacts with Access Manager to validate the status of the user session. Access Manager authorizes the channel content that is being requested by the user.  

9 

When appropriate, Portal Server creates a portlet session and returns channel content to the user's browser. 

10 

The user logs out or the session times out. 

11 

Portal Server closes the portlet session, if any, and Access Manager deletes the user's session object.