Hi,
I do a test in my environment by disable authorization events and get the same behavior that
and get same behavior that user get auth, az
ie:
AuthAccept DRSSOIAM2 [22/Sep/2016:11:34:58 +1000] "127.0.0.1 cn=user1,ou=support,o=userstore" "transpolar agent GET /transpolar/frontpage.htm" [idletime=3540;maxtime=7200;authlevel=5;] [0] [] []
AzAccept DRSSOIAM2 [22/Sep/2016:11:34:58 +1000] "127.0.0.1 cn=user1,ou=support,o=userstore" "transpolar agent GET /transpolar/frontpage.htm" [0000000000000000000000000100007f-0e18-57e33542-0e44-002b3e12] [0] [] []
From UI help, it mentioned:
therefore, the auth and az will happen anyway. The different is whether it trigger rule that tied to az or not.
In general, isProtected, isAuthenticated, isAuthorized happen. What is the reason not to have authorization?
Regards,
Kar Meng