Free Trial

Safari Books Online is a digital library providing on-demand subscription access to thousands of learning resources.

Share this Page URL

Supported WebSEAL authentication mechanisms > Failover authentication - Pg. 117

Access Manager identity is passed back to WebSEAL, WebSEAL pulls the user information from the Access Manager user registry and builds the credential. If you configure Access Manager to use X.509 client certificates for authentication, but the user does not have a certificate available, WebSEAL can fall back to basic authentication, if required. 4.3.4 Failover authentication WebSEAL provides an authentication method that preserves an authenticated session between a client and WebSEAL when the WebSEAL server becomes unavailable in a replicated server (fault-tolerant) environment. The method is called failover authentication. The purpose of failover authentication is to prevent a forced login when the WebSEAL server that has established the original session with the client suddenly becomes unavailable. Failover authentication enables the client to connect to another WebSEAL server, and creates an authentication session containing the same user session data and user credentials. This is supported through a failover cookie. Failover cookie The failover cookie is a mechanism for transparently re-authenticating the user,