OAM - Failover URL, Primary/Secondary, Chained Authentication
In this post, I will talk about the different strategies to configure the failover URL for authentication in case the primary mode of authentication fails. This also allows you to configure a kind of chained authentication. 1) Failure URL: Via the Application Domain through the authentication policies The standard way to redirect to a particular URL on authentication or authorization failure is to set the Failure URL value in the Application Domain Protected Resource Policy for authentication (or authorization). 2) Custom Plugin: Via the Authentication Module-> Steps-> Oechestration-> Authentication Plugin -> Java Code. In Authentication policy with LDAPScheme you have to configure the Failure URL to point to a static JSP/HTML page/URL. Make sure this is the absolute full address eg. http://server/index.htm. That static HTML page/URL should be protected with another authentication policy that is configured for BasicScheme authentication. When you at...