Login using WAM External Web Acess Management

I need to implement into an existing SAP EP 6.0 system an additional access method.

The regular one is uid/pw in the intranet.

On top of it, when a user logs on from home, he comes through an external system (juniper), that authenticates the user and passes on a header variable. This should be matched against the LDAP and an EP ticket should be issured.

While reading through the documentation

"SAP Enterprise Portal Security Guide (Ver 3.3 EP 6.0 SP2)

and the associated help:

SAP" target="_blank">http://help.sap.com/saphelp_nw04/helpdata/en/ef/fc2441509fa831e10000000a1550b0/frameset.htm">SAP Help

they look a little bit contradictionary to me.

My assumption is: I add a new auth_scheme line like:

<authscheme name="header">

<loginmodule>

<loginModuleName><b>????? What goes here?</b></loginModuleName>

<controlFlag>SUFFICIENT</controlFlag>

<options>Header=VAR_USER</options>

</loginmodule>

<priority>5</priority>

<frontendtype>2</frontendtype>

<frontendtarget>com.sap.portal.runtime.logon.header</fr

ontendtarget>

</authscheme>

and put this BEFORE the auth_scheme for uid/pw?

Is this correct?

Or am I on the wrong track?

thanks hs