A user logs in to an Informatica web application enabled to use SAML authentication through an LDAP security domain containing Informatica web application user accounts. The user's credentials are sent in a SAML authentication request to AD FS, which authenticates the user.
Subsequent authentication is managed through session cookies set in the web browser during the initial authentication. The authenticated user can access another Informatica web application configured to use SAML authentication in the same browser session by selecting the LDAP security domain on the application log in page. The user does not need to supply a user name or password.
When authentication is complete, the user remains logged in to all Informatica web applications that are running in the same browser session. If AD FS is configured to issue persistent cookies, the user remains logged in after closing and restarting the browser.
However, if the user logs out of an Informatica web application, the user is also logged out of other Informatica web applications running in the same browser session.
Users not enabled to use SAML authentication select the native security domain on the web application log in page, and then provide the user name and password for the native account.