1. Installation and Configuration Guide
  2. Configure External Authentication Providers
  3. Configure Active Directory and OpenLDAP Authentication Providers
  4. Ensure Proper Order of Authentication Providers

Ensure Proper Order of Authentication Providers

When a user attempts to log in to STA, WebLogic Server calls authentication providers in the order they are listed in the Authentication Providers table.

By default, the providers are listed in the order they were added to the active security realm, but you can change their order to better meet the needs of your site. For example, if an external authentication provider includes many STA users, you may want to put that provider at the top of the list so it is called first.

  1. Make sure you have locked the active security realm from other users (see Lock the WebLogic Server Active Security Realm).
  2. In the Settings for myrealm control bar, select the Providers tab.
  3. In the Authentication Providers table, click Reorder.
    Reorder button selected in Authentication Providers table
  4. In the Reorder Authentication Providers table, arrange the providers in the order you want WebLogic Server to access them, from first to last. Select the check box of the providers you want to reorder, then use the arrow buttons to move them up or down in the list.

    Note:

    The DefaultAuthenticator and the DefaultIdentityAsserter must be the first two providers in the list.

    Reorder Authentication Providers screen
  5. When the providers are listed in the order you want, click OK.
  6. The Authentication Providers table is updated. Proceed to Apply All Configuration Changes.