Generic LDAP Authentication Provider: Common
Configuration Options Related Tasks Related Topics
This page displays basic information about this generic LDAP Authentication provider. You can also use this page to set the JAAS Control Flag to control how this provider is used in the login sequence.
Authentication is the process whereby the identity of users or system processes are proved or verified. Authentication also involves remembering, transporting, and making identity information available to various components of a system when that information is needed.
By default, the WebLogic Authentication provider is configured in the default security realm (myrealm). The WebLogic Authentication provider allows you to edit, list, and manage users, groups, and group membership. User and group information is stored in the embedded LDAP server.
The Control Flag attribute is the Java Authentication and Authorization Service (JAAS) control flag that determines how the LoginModule for the WebLogic Authentication provider is used in the login sequence.
You can use a custom Authentication provider instead of the WebLogic Authentication provider. For a custom Authentication provider to be available in the WebLogic Server Administration Console, the MBean JAR file for the provider must be in the
WL_HOME\lib\mbeantypes
directory.Configuration Options
Name Description Name The name of the Java class used to load the LDAP Authentication provider.
MBean Attribute:
LDAPAuthenticatorMBean.ProviderClassName
Changes take effect after you redeploy the module or restart the server.
Description A short description of the LDAP Authentication provider.
MBean Attribute:
LDAPAuthenticatorMBean.Description
Changes take effect after you redeploy the module or restart the server.
Version The version number of the LDAP Authentication provider.
MBean Attribute:
LDAPAuthenticatorMBean.Version
Changes take effect after you redeploy the module or restart the server.
Control Flag Returns how the login sequence uses the Authentication provider.
A
REQUIRED
value specifies this LoginModule must succeed. Even if it fails, authentication proceeds down the list of LoginModules for the configured Authentication providers. This setting is the default.A
REQUISITE
value specifies this LoginModule must succeed. If other Authentication providers are configured and this LoginModule succeeds, authentication proceeds down the list of LoginModules. Otherwise, control is return to the application.A
SUFFICIENT
value specifies this LoginModule need not succeed. If it does succeed, return control to the application. If it fails and other Authentication providers are configured, authentication proceeds down the LoginModule list.An
OPTIONAL
value specifies this LoginModule need not succeed. Whether it succeeds or fails, authentication proceeds down the LoginModule list.MBean Attribute:
LDAPAuthenticatorMBean.ControlFlag
Changes take effect after you redeploy the module or restart the server.