________  ________  ________  ________  ________  ________  ________ 
 ╱        ╲╱        ╲╱    ╱   ╲╱        ╲╱    ╱   ╲╱        ╲╱    ╱   ╲
╱        _╱    ╱    ╱         ╱         ╱         ╱    ╱    ╱         ╱
╱       ╱╱        _╱         ╱       --╱╲__      ╱         ╱         ╱ 
╲_____╱╱ ╲____╱___╱╲________╱╲________╱   ╲_____╱╲___╱____╱╲__╱_____╱

OCI – Configure Delegated Authentication [Part 3]

Enable Linux PAM Authentication

The current domain authentication settings are configured to only permit SAML SSO authentication as all user objects are being sync’d from AD. Because Linux PAM will utilize delegated authentication outside of the SAML SSO realm, a new policy needs to be created to permit authentication attempts from the module.

1. On the domain Overview page, select Security from the left


2. Select Create IdP policy


3. Populate the Name field and click Add policy


4. Select Add IdP rule


5. Populate the Rule Name filed and select Username-Password in the Assign identity providers field and click Add IdP rule


6. Click Next


7. Click on Add app


8. Search and select the Linux PAM application created previously followed by Add app


9. Click Close to complete

Pages: 1 2 3 4 5 6 7 8