Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

Configure Authentication and Identity Assertion providers

WebLogic Server offers the following types of Authentication and Identity Assertion providers:

Oracle recommends that you configure the Password Validation provider immediately after configuring a new WebLogic domain. The Password Validation provider, which is included with WebLogic Server, can be configured with several out-of-the-box authentication providers to manage and enforce password composition rules. Whenever a password is created or updated in the security realm, the corresponding authentication provider automatically invokes the Password Validation provider to ensure that the password meets the composition requirements that are established. For more information, see Configure the Password Validation provider.

In addition, you can use a Custom Authentication provider which offers different types of authentication technologies. For more information, see Configure custom security providers.

Each security realm must have one at least one Authentication provider configured. The WebLogic Security Framework is designed to support multiple Authentication providers (and thus multiple LoginModules) for multipart authentication. Therefore, you can use multiple Authentication providers as well as multiple types of Authentication providers in a security realm. The Control Flag attribute determines how the LoginModule for each Authentication provider is used in the authentication process. For more information, see Set the JAAS control flag.

To configure an Authentication or Identity Assertion provider:

  1. If you have not already done so, in the Change Center of the Administration Console, click Lock & Edit (see Use the Change Center).
  2. In the left pane, select Security Realms and click the name of the realm you are configuring (for example, myrealm).
  3. Select Providers > Authentication and click New.

    The Create a New Authentication Provider page appears.

  4. In the Name field, enter a name for the Authentication provider.
  5. From the Type drop-down list, select the type of the Authentication provider and click OK.
  6. Select Providers > Authentication and click the name of the new Authentication provider to complete its configuration.
  7. On the Configuration page for the Authentication provider, set the desired values on the Common and Provider-Specific tabs.
  8. Repeat these steps to configure additional Authentication providers.

    If you are configuring multiple Authentication providers, refer to Set the JAAS control flag.

  9. To activate these changes, in the Change Center, click Activate Changes.
  10. After you finish configuring Authentication providers, reboot WebLogic Server.

Back to Top