Hi Nicolas,
with NWBC this is a bit more difficult, as the authentication is done using SPNEGO on the HTTPS connection and the user cannot interfere with this.
You could define a separate ICF node for NWBC access to the backend system, and disable SSO on the backend for this node.
Best regards,
Christian
