| |
Default Authentication Provider: Provider Specific
Configuration Options Related Tasks Related Topics
This page allows you to configure additional attributes for this WebLogic Authentication provider.
Configuration Options
Name Description Minimum Password Length This password is the password used to define users in the embedded LDAP server used by the WebLogic Authentication provider to store user and group information.
MBean Attribute:
DefaultAuthenticatorMBean.MinimumPasswordLengthMinimum value:
0Identity Domain The name of the identity domain.
MBean Attribute:
IdentityDomainAuthenticatorMBean.IdentityDomainUse Retrieved User Name As Principal Specifies whether we should use the user name retrieved from the embedded LDAP server as the Principal in the Subject.
MBean Attribute:
DefaultAuthenticatorMBean.UseRetrievedUserNameAsPrincipalPropagate Cause For Login Exception Specifies whether the providers should propagate the cause of the LoginException.
MBean Attribute:
LoginExceptionPropagatorMBean.PropagateCauseForLoginExceptionChanges take effect after you redeploy the module or restart the server.
Enable Password Digests Enables the storage of password information required to support Web Services Security Password Digest and other digest authentication algorithms. If set to
true, the WebLogic Authentication provider stores the user password in a 2-way encrypted form. The original password can then be retrieved and used for digest authentication.MBean Attribute:
DefaultAuthenticatorMBean.PasswordDigestEnabledChanges take effect after you redeploy the module or restart the server.
Max Group Membership Search Level Specifies how many levels of group membership can be searched. This setting is valid only if GroupMembershipSearching is set to
limited.Valid values are 0, and positive numbers. For example, 0 indicates only direct group memberships will be found, a positive number indicates the number of levels to go down.MBean Attribute:
DefaultAuthenticatorMBean.MaxGroupMembershipSearchLevelGroup Membership Searching Specifies whether recursive group membership searching is unlimited or limited. Valid values are
unlimitedandlimited.MBean Attribute:
DefaultAuthenticatorMBean.GroupMembershipSearchingProvider Class Name The name of the Java class used to load the Authentication provider.
MBean Attribute:
DefaultAuthenticatorMBean.ProviderClassNameChanges take effect after you redeploy the module or restart the server.
Name Callback Allowed Specifies whether the provider is allowed to get the user name from a NameCallback versus getting the user name (and identity domain) from an IdentityDomainUserCallback when the provider is configured with an identity domain.
MBean Attribute:
DefaultAuthenticatorMBean.NameCallbackAllowedKeep Alive Enabled Specifies whether to prevent LDAP connections from timing out.
MBean Attribute:
DefaultAuthenticatorMBean.KeepAliveEnabled
|