When planning for Authentication Services, include the following considerations:
If you don’t plan to use Authentication Services to authenticate system users or provide password change information to core drivers, you don’t need to install the System Intercept.
If you don't plan to use the AS Client API or Authentication Services, you don't need to run the Platform Services Process.
If your use of Authentication Services and the AS Client API is infrequent and does not require high performance, consider using the DIRECTTOAUTHENTICATION statement in the platform configuration file. This configuration does not use the Platform Services Process. For details about the DIRECTTOAUTHENTICATION statement, see DIRECTTOAUTHENTICATION Statement.
You might need to permanently exclude some users from Authentication Services processing. You might want to phase in your implementation by using a subset of your users to start with. For details about excluding users from Authentication Services processing, see AS.USER.INCLUDE Statement / AS.USER.EXCLUDE Statement.
You must specify which core drivers are used for Authentication Services. You might want to establish different preference groups for sets of these core drivers based on their network connectivity or other issues. For details, see Section 3.3.10, AUTHENTICATION Statement.