A customer has a WebTrade application that initially uses the embedded LDAP to authenticate
users. To enhance security, the customer decides to use OAM to authenticate some of the users
against an external LDAP store. For this to work, a customer configured an OAMAuthenticator, but
was not sure what to select for the Control Flag. What Control Flag should the customer choose?
A.
OPTIONAL
B.
REQUISITE
C.
REQUIRED
D.
SUFFICIENT
E.
MANDATORY
Explanation:
Note:
* When you configure multiple Authentication providers, use the JAAS Control Flag for each
provider to control how the Authentication providers are used in the login sequence.
You can choose the following the JAAS Control Flag settings, among others:
* Example:
Setting the Order of Providers
Re-order the OAM Identity Asserter, OID Authenticator, and Default Authenticator by ensuring that
the control flag for each authenticator is set as follows:
Reference: Oracle Fusion Middleware Security Guide
keyword here is some of the users. in my view, D, sufficient is the correct answer.
In my view D is correct as well:
http://docs.oracle.com/cd/E23943_01/bi.1111/e10543/privileges.htm#BIESC6113
i think B is correct. the question states: ‘enhanced security’.
Correct Option is ‘D’ – (SUFFICIENT – This LoginModule need not succeed. If it does succeed, return control to the application. If it fails and other Authentication providers are configured, authentication proceeds down the LoginModule list.)
D
OAM Identity Asserter (REQUIRED)
AD or OID Authenticator (SUFFICIENT)
Default Authenticator (SUFFICIENT)
https://oraidm.wordpress.com/2014/05/03/configure-oam-authentication-provider-to-enable-sso-for-web-applications/