This cookbook provides a step-by-step guide to integrating an IBM Security Access Manager system with your IBM Cloud Identity tenant.

This cookbook provides a step-by-step hands-on lab guide to setting up an IBM Cloud Identity environment, including both Cloud Identity Connect and Cloud Identity Verify subscriptions, and exploring its capabilities. 

All steps will be performed using your preferred Web browser.

Course Revision: 1.9

IBM Cloud Identity Verify (CIV) is Authentication-as-a-Service (AaaS). It provides a simple REST API which authorized clients can call to initiate a variety of 2nd Factor Authentication (2FA) mechanisms. In addition to the REST interface, IBM also provides a number of “IBM Verify Gateway” applications which allow integration of CIV capabilities with other authentication frameworks:

• IBM Verify Gateway for RADIUS

• IBM Verify Gateway for PAM (on Linux)

• IBM Verify Gateway for PAM (on AIX)

• IBM Verify Gateway for Windows Login

This cookbook provides a step-by-step guide to exploring these integration components.

IBM Security Access Manager (ISAM) has built-in functionality to allow it to integrate with an IBM Cloud Identity tenant and use the authentication services provided by CIV. This allows applications integrated with ISAM to use the same authentication services as applications directly integrated with CIV.

This cookbook provides a step-by-step guide to integrating an ISAM system with the AaaS capabilities of your IBM Cloud Identity tenant.

IBM Cloud Identity Verify (CIV) is Authentication-as-a-Service (AaaS). It provides a simple REST API which authorized clients can call to initiate a variety of 2nd Factor Authentication (2FA) mechanisms.

This cookbook explores how to integrate a web application, in this case a simple NodeJS Express application, with Cloud Identity Verify. The following Cloud Identity capabilities will be used:

• Username and Password Authentication

• QR Code (password-less) Authentication

• SMS (or e-mail) One Time Password 2nd Factor Authentication

• User information lookup

IBM Cloud Identity Verify provides Authentication-as-a-Service (AaaS). This lab provides a step-by-step guide to integrate an IBM Security Access Manager system with the Authentication as a Service (AaaS) capabilities of your IBM Cloud Identity tenant.

This lab provides a step-by-step guide to integrate an on-premises IBM Security Access Manager system to your IBM Cloud Identity tenant. You basically use Access Manager as an Identity Provider to authenticate against a corporate LDAP directory and then assert the identity information to IBM Cloud Identity and the SaaS applications supported in the Cloud Identity platform.

In this video, you learn about the IBM Cloud Identity platform, as well as, the Cloud Identity Connect (CIC), Cloud Identity Verify (CIV), and Cloud Identity Govern (CIG) offerings.

In this video, you will see a demo of Access Manager integration with Cloud Identity Verify.

In this demonstration of IBM Cloud Identity Connect, you will learn how you can make the most of your bundled IBM Security Access Manager entitlement in order to provide integration with on-premise directories, such as Active Directory, and also how to make use of the strong authentication capabilities in Access Manager for securing your SaaS services.

IBM Cloud Identity is an Identity-as-a-Service (IDaaS) offering which provides your users with rapid and secure access to thousands of popular cloud applications, while enabling single sign-on (SSO) to all their applications, whether from the cloud or on-premise.

IBM Cloud Identity Connect is a non-disruptive IDaaS solution that bridges on-premise Identity and Access Management to the cloud. This instructor-led, hands-on lab will take you on a deep-dive technical tour of IBM Cloud Identity Connect. You will start by creating your own IBM Cloud Identity tenant, and then implement SAML Single Sign-On to a popular SaaS application. You will then explore delegated administration, user and group management, and creation of a hybrid solution with on-premise integration. Finally, you will see how password-free SaaS access from mobile devices can be achieved via integration with IBM MaaS360.

Presented by

• Jon Harry, IBM
• Dinesh Jain, IBM