external-user

Use this entry to set whether the mapped identity should correspond to a known Security Access Manager identity.

Syntax

external-user = {true | false}

Description

This boolean is used to indicate whether the mapped identity should correspond to a known Security Access Manager identity. When you are creating a session with an external user, the credential does not contain any group membership. The scopes contained in the credential should instead be used for authorization policy.

Options

true: The mapped identity should correspond to a known Security Access Manager identity.
false: The mapped identity does not need to correspond to a known Security Access Manager identity.

Usage

This stanza entry is required.

Example

external-user = true