Your achievements

Level 1

0% to

Level 2

Tip /
Sign in

Sign in to Community

to gain points, level up, and earn exciting badges like the new
Bedrock Mission!

Learn more

View all

Sign in to view all badges

SOLVED

How AEM local user works if AEM using saml 2.0 authentication handler

michaelowenwang
Level 2
Level 2

if my AEM platform using saml 2.0 authentication handler to integrated with LDAP successfully, the identity user will be authenticated by LDAP if they want to access the AEM. But how about the local user like admin account works? admin user is the AEM local user, not belong to LDAP, will admin can access the AEM also?

1 Accepted Solution
Sham_HC
Correct answer by
Level 10
Level 10

The local user account will work. You can have more than one authentication handler configured and right one is picked based on configured identify requests to which the AuthenticationHandler service is applicable.    General mistake in configuration,  Example you might have configured root "/" for saml & hence idp fails to authenticate admin.   Use [2] to use local accounts.   More details about authentication handler at [1].

[1]   http://sling.apache.org/documentation/the-sling-engine/authentication/authentication-authenticationh...

[2]   http://localhost:4502/libs/granite/core/content/login.html

View solution in original post

0 Replies
Sham_HC
Correct answer by
Level 10
Level 10

The local user account will work. You can have more than one authentication handler configured and right one is picked based on configured identify requests to which the AuthenticationHandler service is applicable.    General mistake in configuration,  Example you might have configured root "/" for saml & hence idp fails to authenticate admin.   Use [2] to use local accounts.   More details about authentication handler at [1].

[1]   http://sling.apache.org/documentation/the-sling-engine/authentication/authentication-authenticationh...

[2]   http://localhost:4502/libs/granite/core/content/login.html

View solution in original post

michaelowenwang
Level 2
Level 2

Thank you for your response and detail answer. I appreciate it.smiley

michaelowenwang
Level 2
Level 2

Hi Donald,

Thank you for your reply, I know this post URL teaches people how to set up SAML, IDP, LDAP for AEM integration. But my question is AEM Local user like admin/author account can still have access to AEM platform if AEM platform integrated with Identity Directory already, all the account credential are stored in Identity Directory for saml authentication. Does AEM local authentication still work?