Creating Basic Or Form-Based Authentication Classes - Novell ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010 Manual
Identity server guide
Hide thumbs
Also See for ACCESS MANAGER 3.1 SP2 - IDENTITY SERVER GUIDE 2010:
- Manual (264 pages) ,
- User manual (58 pages) ,
- Manual (30 pages)
Table of Contents
Advertisement
3.2.1 Creating Basic or Form-Based Authentication Classes
1 In the Administration Console, click Devices > Identity Server > Edit > Local > Classes.
2 Click New to launch the Create Authentication Class Wizard.
3 Specify a display name, then select a class from the Java class drop-down menu.
The following classes are recommended only for testing purposes:
BasicClass: Uses basic HTTP authentication.
PasswordClass: Passes the user name and password over HTTP in readable text, and uses
a form-based login to collect the name and password.
RadiusClass: RADIUS enables communication between remote access servers and a
central server. For a production environment, use ProtectedRadiusClass.
For a production environment, select one of the following protected classes:
X509Class: Certificate-based authentication. See
(X.509) Authentication," on page
ProtectedBasicClass: The BasicClass, protected by HTTPS.
ProtectedPasswordClass: The PasswordClass, protected by HTTPS (form-based).
ProtectedRadiusClass: The RadiusClass, protected by HTTPS. See
"Configuring for RADIUS Authentication," on page 139
KerberosClass: The authentication class used for using Kerberos for Active Directory
and Identity Server authentication. See
Authentication," on page 159
NMASAuthClass: The authentication class used for Novell Modular Authentication
Services (NMAS), which uses fingerprint and other technology as a means to authenticate
a user. For instructions on using the NMAS NESCM method, see
"Configuring Access Manager for NESCM," on page
NPOrRadiusOrX509Class: The authentication class that allows the creation of a
contract from which the user can select an authentication method: name/password,
RADIUS, or X.509. For configuration information, see
Credential Class," on page
PasswordFetchClass: The authentication class that allows the Identity Server to retrieve
the user's password when the user has used a non-password class for authentication. For
configuration information, see
page
148.
OpenIDClass: The authentication class that allows you to configure the Identity Server to
trust the provider or providers of OpenIDs. For configuration information, see
"Configuring for OpenID Authentication," on page
Section 4.2, "Configuring Mutual SSL
140.
Section 5, "Configuring for Kerberos
for configuration steps.
145.
Section 4.5, "Configuring Password Retrieval," on
147.
Section 4.1,
for configuration steps.
Section 4.6,
149.
Section 4.3, "Creating an ORed
Section 4.4,
Configuring Local Authentication 119
Advertisement
Table of Contents
Troubleshooting
