Hi, one of my customer would like to protect web access to their applications with the following scenario:
- accessing all applications requires LDAP password (basic authentication)
- only for one of the applications (e.g. application X) both LDAP and ArcotID password are required
- in case the user has been already authenticated with the LDAP password, when hitting the application X only ArcotID password is required
Searching internally, i found that this scenario is sometimes described as Step-up Authentication, sometimes as "Login Sequence", and sometimes confused with the concept of protection level associated with different authentication schema.
Can someone provide updated info regarding this scenario, and clarify if is it still provided as a package (i guess developed from GD) ?