You can specify default values for how the system processes user stores and authentication contracts. The default contract is executed when users access the system without a specified contract, and when Access Gateway is configured to use any authentication.
Additional default contracts can be specified for well-known authentication types that might be required by a service provider. These contracts are executed when a request for a specific authentication type comes from a service provider.
On the Home page, click Identity Servers > [cluster name] > Configuration > Defaults.
Specify the following details as necessary:
|
Field |
Description |
|---|---|
|
Default User Store |
Specifies the default user store for authentication. If you selected <Default User Store> when configuring an authentication method, Access Manager uses the user store you specify here. |
|
Authentication Contract |
Specifies the default authentication contract to be used when users access Identity Server directly or a protected resource is configured to use Any Contract. If you create a new contract and specify it as default, ensure that you update the Access Gateway configuration if it has protected resources configured to use Any Contract. |
|
Default Contract Types |
Specifies the default authentication contracts to be used for each authentication type. When a service provider requests a specific authentication type, rather than a contract, the identity provider uses the authentication contract specified here for the requested authentication type. See Specifying Authentication Types. |
Click Save.
Update Identity Server.