Last updated on MAY 07, 2017
Applies to:Oracle Access Manager - Version 22.214.171.124.160719 and later
Information in this document applies to any platform.
You have 2 authentication scheme for user authentication :
Kerberos (default) and LDAP authentication (Form Authentcation)
You are using them both for this scenario:
Users who can authenticate with kerberos ticket will get authentication with WNA.
Users, who can't be authenticated with WNA sould be authenticated with Form.
This scenario is implemented with pre-authentication rule:
str(request.requestMap['Cookie']).lower().find('oam_wna_opt_out=true') >= 0
It's wna fallback to form authentication.
Everything works fine in case user's browser is configured for WNA.
I mean Firefox has this config: "network.negotiate-auth.trusted-uris: http://,https://"
Users from AD domain can be authorized.
In case user's browser is not configured (no changes was made with default config ), User have this error:
"Proper authorization is required for this area. Either your browser does not perform authorization or your authorization has failed."
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
Million Knowledge Articles and hundreds of Community platforms