This documentation is for WSO2 Identity Server 5.0.0. View documentation for the latest release.
Configuring Local and Outbound Authentication for a Service Provider - Identity Server 5.0.0 - WSO2 Documentation
Skip to end of metadata
Go to start of metadata

You can configure the following in local and outbound authentication.

  1. Expand Local & Outbound Authentication Configuration.
  2. Select the Authentication Type you require from the available options. This is a required field.
    • If you choose Advanced Configurations, you can configure additional authentication steps.
      1. Click Add Authentication Step. Clicking this again will enable you to create another authentication step.
      2. Select whether this is a Subject Step, Attribute Step or both. In the case of multiple steps, you can have only one step as the subject step and one as the attribute step.
      3. Click the plus button to add a Local Authenticator. You can choose the type of authenticator using the dropdown. Clicking the plus button again will enable you to add a second local authenticator. Basic authentication allows you to authenticate users from the enterprise user store.
      4. Click the plus button to add a Federated Authenticator. You can choose the type of authenticator using the dropdown. Clicking the plus button again will enable you to add a second federated authenticator.
      5. Click the Update button. This will return you to the previous screen with your newly configured authentication steps.
    • If you choose Federated Authentication, you need to select the identity provider from the dropdown list.
  3. Add a local authenticator under Request Path Authentication Configuration by clicking the Add button. Clicking the Add button again enables you to add another local authenticator. The two types of local authenticators available are as follows.
    • OAuthRequestPathAuthenticator
    • BasicAuthRequestPathAuthenticator

Look through the following for more details on the various authentication types.

Authentication TypeDetails
DefaultThis is the default authentication provided by the service provider.
Local AuthenticationThis is the authentication enabled in the Identity Server.
Federated AuthenticationThe Federated Authenticators are not within the Identity Server like local authenticators. These are external. Federated authentication is based on the Identity Provider that you added to the WSO2 Identity Server. In this case, the user is authenticated by checking the user details against the details specified in the identity provider.
Advanced ConfigurationAdvanced configurations enable you to add multiple steps in authentication. When multiple authentication steps exists, the user is authenticated based on each and every one of these steps. If only one step is added then the user is only authenticated based on the local and/or federated authenticators added. However, in the case of local and/or federated authenticators, the authentication happens based on any one of the available authenticators.

About request path authenticators

When user credentials are attached to the request itself, federated login is enabled by using these credentials. This is done by request path authenticators which is shipped with WSO2 IS.

  • No labels