Page History
...
Global settings are applied to all Identity Services.
Explanation:
...
- Required Identity Services: user login is performed with all required Identity Services.
- No Optional Identity Services are considered.
- If more than one Required Identity Service is configured then a user cannot log in if the login fails with any of the Required Identity Services.
- Permissions are applied from roles assigned by the last all Identity Service Services in the sequence of enabled Identity Services which are required to authenticate a user account.
- Optional Identity Services: with the first successful login to an Identity Service the user is considered to have logged in.
- No further optional Identity Services are consulted if a user login is successful with one of the Optional Identity Services.
- For example, if two Optional Identity Services
JOC
andLDAP
are configured in this sequence then the login to theJOC
Identity Service can fail and still the user might successfully login with theLDAP
Identity Service. - Permissions from the successful login to an Optional Identity Service are used.
- Disabled Identity Services are not considered for user login.
...
Note that a number of Identity Providers, for example LDAP being used for Active Directory access, might not accept repeat repeatedly failed login attempts and might block the relevant user account.
...
Overview
Content Tools