By default, authentication and authorization for ACI are performed by the ATG Custom Authentication Provider, which works with the Web Services for Cognos Authentication Provider (WSCAP) Web service. These two components manage security between ATG Customer Intelligence and the ATG user directory, which contains user login information, roles, permissions, and other data used to authenticate and authorize users. ACI can then use the information in the user directory to authenticate attempted logins.
If you do not want to use the ATG Custom Authentication Provider, you can create your own authentication component; see the Custom Authentication Provider SDK Developer Guide for information.
The following diagram shows the components involved in authentication:
