When the IdP partner is created, an authentication module and scheme were also created to impose an access control model to protect Primavera application resources. The authentication scheme and module must then be mapped to an authentication policy in the application domain that is created to protect Primavera application resources.
To create an authentication policy and map the federated identity authentication scheme:
- In the Launch Pad tab, under Access Manager, click Application Domains.
- In the Application Domain tab, complete the following:
- Click Search.
- Click the name of an application domain.
- In the application domain tab, open the Authentication Policies tab.
Note: The name of the tab is the name of the application domain that you clicked.
- In the Authentication Policies tab, click Create Authentication Policy.
- In the Create Authentication Policy tab, complete the following:
- In the Name field, enter a name for the authentication policy.
For example,
- (Optional) In the Description field, enter a description of the authentication policy.
- In the Authentication Scheme list, select the authentication scheme that you created in Creating an Identity Provider Partner.
For example, FederatedProviderPartnerFederationScheme
- Click Apply.
- In the Name field, enter a name for the authentication policy.