SSO with Policy AgentOpenAMBrowserBrowserApplication & AgentApplication & AgentPolicy, Session ServicesPolicy, Session ServicesAuthN ServiceAuthN Service1Browse to protected resource. Ifa session is present, skip to 8.Otherwise...2Redirect...3...to OpenAM for authentication.4Authentication page5Submit credentials.6Set valid session for the configured domain name, and redirect...7...to the application.8Request session validation9Response for session validation10Request policy decision11Response for policy decision12Allow access & return resource,or deny access & return HTTP 403.