send-header-ba-first

send-header-ba-first

send-header-ba-first = {yes|no}

Description

By default, WebSEAL selects the authentication challenge to return to the client by sequentially searching the available authentication mechanisms until it finds one that is enabled. We can use the send-header-ba-first entry to ensure that WebSEAL selects the BA header before any of the other configured authentication mechanisms.
Options

yes WebSEAL sends the header first.
no WebSEAL searches sequentially through the available authentication mechanisms and sends the first one that is enabled.

Usage: Optional
Default: no
Example:
send-header-ba-first = yes

See also
send-header-spnego-first

Parent topic: [server] stanza

yes	WebSEAL sends the header first.
no	WebSEAL searches sequentially through the available authentication mechanisms and sends the first one that is enabled.