This chapter includes the following sections:
You use the Virtual User Authentication provider as part of the overall capability supported in WebLogic Server to authenticate users who are not defined in the identity store with which the security realm is configured. Instead, you create a virtual user whose identity is based on select attributes contained in an X.509 certificate, such as in the Subject DN.
For complete details about configuring and using virtual user authentication in a WebLogic domain, see Authenticating a User Not Defined in the Identity Store.
Note:
Virtual user authentication is supported only on network ports that are configured for 2-way SSL, with listening servlets using CLIENT-CERT
authentication.
Virtual user authentication is not supported in topologies where:
SSL terminates at a front-end proxy
Requests are forwarded to a WebLogic Server instance in which SSL has not been enabled
To add the Virtual User Authentication provider to the security realm using the WebLogic Server Administration Console, complete the following steps:
SUFFICIENT
in the Control Flag field.