IdP authentication supports standard interactive logins, where a user must supply credentials each time they log in. Federated logins that use network credentials can also be configured.
The Hyland IdP server currently supports authentication using the following methods.
Standard OnBase authentication (see the Legacy Authentication Methods module reference guide for details on configuring standard OnBase authentication)
WS-Federation (AD FS)
Some third-party authentication providers use protocols that return a reference to a token instead of the token itself. In these situations, the reference token must be dereferenced before the claims information can be retrieved.
Dereferencing is required with third-party authentication providers that use the CAS protocol or the artifact binding defined in the SAML standard.