Databases Reference
In-Depth Information
13.
To make the changes take effect, you have to restart both the WebLogic Ad-
min Server and the BAM Managed Server.
It is a best practice to set the
Control Flag
attribute to
SUFFICIENT
for each Authentication provider, if two or more
Authentication providers are required in one security realm.
Oracle Security Platform Services (OPSS)
, the underlying
security framework for BAM, iterates the list of the Authentic-
ation providers to perform user validations. In this case, any
successful validation in one provider sufficiently determines
the result. Only the failed authentication causes the validation
to move forward to the next authenticator in the list.
Reordering Authentication providers
On the earlier releases of BAM 11gR1, for example PS1 or PS2, you need to
reorder the Authentication providers, so that the LDAP-based security provider
that you created earlier appears on the top of the list. However, from 11.1.1.4
