Skip to main content

This is documentation for Caché and Ensemble. See the InterSystems IRIS version of this content.Opens in a new tab

Please read this important announcement about the future of Caché and Ensemble maintenanceOpens in a new tab. Contact your account team to migrate to InterSystems IRIS.

Sorry, your browser does not support JavaScript or JavaScript is disabled. Please enable JavaScript or use another browser to have a better experience.

Cascading Authentication

When you specify multiple authentication mechanisms for a Caché Service, Caché uses cascading authentication to manage user access to the system. Caché attempts to authenticate using the specified mechanisms in turn until one succeeds or until they all fail. The cascade depends upon the particular scenario.

Scenario 1: A Password user exists in the Caché system.

Kerberos.
OS-based.
Caché Login

Scenario 2: An LDAP or Delegated user exists

No other authentication mechanism is tried.

Scenario 3: User name does not exist in Caché System

LDAP.
Delegated.
Unauthenticated.

Kerberos Authentication

Predefined Users