Configure the user-facing authentication mechanism

To define how an end user authenticates to an application, you must configure an application with one of the following directories:
  • Active Directory (AD)
  • Lightweight Directory Access Protocol (LDAP)
  • Active Directory Lightweight Directory Services (AD LDS)

If certificate authentication is enabled, you also have the option to select Certificate Only as a user-facing authentication mechanism. For more information on certificate-based authentication, see User-facing authentication mechanism for applications and Certificate-based authentication in the IdP.

How to

  1. If you are creating a new application, see Add an application to EAA. If you are modifying an existing application, continue to step 2.
  2. Log in to the Enterprise Application Access (EAA) Management Portal.
  3. From the top menu bar click Applications.
  4. Locate the application card you wish to configure advanced settings for. If necessary, search for an application by entering the application name in the Search Apps field at the top of the page. Select the application you want from the list.
  5. Click Settings > AUTHENTICATION.
  6. If there is no identity provider assigned, assign an identity provider:
    1. Click Assign Identity Provider and select an identity provider from the list.
    2. Click Save & go to Services.
  7. Click the ADVANCED SETTINGS tab.
  8. In the Authentication section, go to the User-facing Authentication Mechanism menu.
  9. Select one of the following:
    • form
    • basic
    • basic+cookie
    • certificate only
  10. Click Save & Exit.

Next steps

Deploy the application for the changes to go into effect.