Authentication servers or repositories in UAG are not used only for performing front end authentication (meaning the trunk logon process) or backend authentication (meaning the process of UAG providing credentials to backend applications on behalf of the user). Another usage for repositories is the ability to configure authorization settings per application.
For any application published through a UAG trunk, you have the option of deciding which users can gain access to the application. This is true for all trunk applications, of all categories—built-in services, web, client/server, and so on. These settings can be configured while adding an application to the trunk through the Add Application Wizard, and also at any later point, on the Authorization tab of the Application Properties window. The default setting for all applications is Authorize all users, with only one exception, which is publishing the UAG Web Monitor as a built-in service. The Web Monitor...