WebLogic Server allows you to authenticate users who are not defined in the identity store. You can do this by customizing the configuration of the WebLogic Identity Assertion provider (also called the DefaultIdentityAsserter) and configuring the Virtual User Authentication provider. This enables the WebLogic Identity Assertion provider to support the creation of a subject based on attributes contained in the client certificate and to support virtual user assertion.
The main steps for configuring the WebLogic Identity Assertion provider to enable the authentication of users not defined in the identity store: