The mixed authentication allows to combine multiple schemes of authentication, in a predetermined order.
Let´s consider for example an organization that delegates in LDAP the authentication of its internal users, but needs to use addtionally the native authentication and the federated authentication (Google), to authenticate other groups of external users, which are not registered in the directory services.
This situation is solved by using the mixed authentication, indicating in the environment configuration which are the supported authentication methods and in what order should they be applied:
•First Method of Mixed Authentication = LDAP
•Second Method of Mixed Authentication = Native
•Third Method of Mixed Authentication = Google
The access page to the portal allows to use the different alternatives.
If the user presses the button “Enter with Google”, they are redirected to the Google login. The user can use the product only when they are correctly authenticated in Google and registered in Deyel.
If the user informs their user code or their alias and password, then Deyel tries to authenticate them first in LDAP and then by Native authentication.
When a mechanism authenticates correctly, Deyel allows the login of the user if it exists.
If a mechanism fails, it continues with the next one and if every configurated mechanism fails, the user receives an authentication error and the product can not be used.
