2.2. Configuring Authentication Modules

2.2.1. Hints For the Active Directory Authentication Module
2.2.2. Hints For the Adaptive Risk Authentication Module
2.2.3. Hints For the Anonymous Authentication Module
2.2.4. Hints For the Certificate Authentication Module
2.2.5. Hints For the Core Authentication Module
2.2.6. Hints For the Data Store Authentication Module
2.2.7. Hints For the Device Print Authentication Module
2.2.8. Hints For the Federation Authentication Module
2.2.9. Hints For the HOTP Authentication Module
2.2.10. Hints For the HTTP Basic Authentication Module
2.2.11. Hints For the JDBC Authentication Module
2.2.12. Hints For the LDAP Authentication Module
2.2.13. Hints For the Membership Authentication Module
2.2.14. Hints For the MSISDN Authentication Module
2.2.15. Hints For the OATH Module
2.2.16. Hints For the OAuth 2.0 Authentication Module
2.2.17. Hints for the Persistent Cookie Module
2.2.18. Hints For the RADIUS Authentication Module
2.2.19. Hints For the SAE Authentication Module
2.2.20. Hints For the SecurID Authentication Module
2.2.21. Hints For the Windows Desktop SSO Authentication Module
2.2.22. Hints For the Windows NT Authentication Module
2.2.23. Hints For the WSSAuth Authentication Module

The OpenAM console provides two places where the OpenAM administrator can configure authentication modules.

  1. Under Configuration > Authentication, you configure available modules for use throughout OpenAM. What you set up here is inherited for use elsewhere.

  2. Under Access Control > Realm Name > Authentication, you configure modules for your realm. What you set up at this level inherits from the global configuration, but you can override what is inherited. You can also add your own modules if necessary.

The configuration of individual modules depend on its function. The configuration of an Active Directory over LDAP user authentication module requires connection information and details about where to search for users. In contrast, the configuration of the HOTP module for OTP authentication requires data about the password length and the mail server or SMS gateway for to send the password during authentication.