Configuring access for single-sign-on using internal authentication
Take these steps to specify that you run a single sign-on authentication system that is based on the use of Lightweight Third-Party Authentication keys to authenticate users to the Service Center, Security Identity Manager, and other applications.
About this task
If your governance and identity system is set up for a single sign-on authentication method that runs on the use of Lightweight Third-Party Authentication keys, users of the Service Center, Security Identity Manager, and any other applications within the single sign-on environment need to provide their credentials only one time within the browser session.
Follow these steps to define in Identity Governance and Intelligence that you use this authentication method.
Procedure
- Log in to the Administration Console and go to Access Governance Core.
- Select and scroll down to the Access section.
- Select Internal authorization. After their first login to one of the applications in the single sign-on environment, users are not prompted for further authentication to gain access to the other applications in that environment. The virtual appliance does the transfer of the LTPA tokens that include the user credentials to the other applications. The tokens are valid for the lives of the browser sessions.