OAM 11g: Oracle Access Manger 11g WNA Login Scenarios (Doc ID 1278339.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle Access Manager - Version 11.1.1.3.0 and later
Information in this document applies to any platform.

Goal

Oracle Access Manger 11g WNA login Scenarios...

When the browser being used is configured to use Integrated Windows Authentication and
a resource that this protected by OAM kerb auth module is called…

If a Kerberos ticket is identified (received by OAM - irrespective of the domain), it is tried to be authenticated against the KDC configured with OAM. If Authentication fails, user is denied access.

If a NTLMSSP ticket is identified (received by OAM) authentication fails

If the browser being used is not configured to use Integrated Windows Authentication. When a resource that this protected by OAM kerb auth module, no TGT is supplied, a browser basic auth windows is displayed; where you can enter a valid username/pwd format combination that is defined by the default OAM Identity store User login attribute. In other words if a Kerberos ticket can't be identified (received by OAM- irrespective of browser, OS, domain-login etc), fallback mechanism will be invoked.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms