This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Fallback Auth with X509 Certificate Auth?

Is it possible to configure a "fallback auth" mechanism when using X509 Certificate auth, similar to how you can with Kerberos?


  • you can do this with the dual connector setup, but it is not nice, especially if you use it during SAML federation. And that is an understatement.

    See here:


    With that setup, you can catch the error if no certificate is present, and based on that error, you can then call a fallback contract.


    There is another solution by using an AJAX call to authenticate with a certificate, and then based on the call a fallback contract. I have a custom class for this, but this is of course not officially supported.