How-tos

Easily secure access to your Bluemix apps with SSO

Share this post:

One of the biggest concerns that many organizations face when they start developing apps on the cloud is around security. How can you control who has access to your apps? How can you validate that the user really is who they claim to be? How can you integrate with Active Directory or another identity store that you already have on premise?

Recently, a completely revamped version of the Single Sign-on Service (SSO) was made available on Bluemix. “SSO V2.0” introduces many new capabilities that make it even easier for you to add user access security to your Bluemix apps. And best of all, you don’t have to become a security expert to do it!

SSO Setup Page

With SSO V2.0 you can:

  • Authenticate: Choose from multiple different identity sources to authenticate your users from.
  • Integrate: Connect to existing on-premise identity sources like Microsoft AD and LDAP.
  • Manage: Create your own cloud directory and manage which users will have access to your apps.
  • Get social: Support consumer scenarios using social identity credentials that your users already have, like Facebook, Google, and LinkedIn.
  • Personalize: Customize the login experience for your end users to align with your own brand image.
  • Configure: Implement authentication in your apps using a configuration-not-coding approach for Java and Node.js.

The focus is to enable rapid development and deployment of secure apps. The service is based on standard protocols, like SAML 2.0 and OpenID Connect, which simplify interoperability. But at the same time, it’s not a requirement for app developers to learn the details of each of these protocols.

Integrate SSO with App

Our Getting Started with Single Sign On documentation will help to quickly walk you through the basic steps of setting up an instance of the service including choosing an identity source to authenticate from. The fastest way to get up and running and gain familiarity with the service is to create a Cloud Directory instance and add some test users to it. After you have the initial instance setup, the documentation will walk you through the steps to bind and integrate into your application and get it deployed and tested.

We definitely look forward to your feedback. If you have any questions or need help, you can reach out to us on the Bluemix Developer forums. And keep a look out for more cool features as we move through 2015.

Add Comment
No Comments

Leave a Reply

Your email address will not be published.Required fields are marked *

More How-tos Stories

Monitoring & logging for IBM Bluemix Container Service with Sematext

In this blog post we discuss how Sematext integrates with IBM Bluemix Container Service to provide monitoring and logging visibility of your containerized applications, as they run in production. In the sections below, we demonstrate how to set up a Kubernetes cluster in Bluemix and how to set up Sematext in this cluster. IBM Cloud has monitoring and logging capabilities in the platform, but we know our customers operate in a multi-cloud or hybrid cloud environment and we are very excited to partner with Sematext, enabling operational consistency across those environments. We worked with Alen Komljen, an Automation Engineer from Sematext, to create the following content and perform the technology validation.

Continue reading

99.95% availability. Balancing release velocity and reliability

Availability and reliability are rarely at the front of developers minds when delivering new applications on Bluemix. The ease and speed of creating and deploying new features is very seductive.

Continue reading

Deploying to IBM Cloud private with IBM Cloud Developer Tools CLI

IBM Cloud private is an application platform for developing and managing on-premises, containerized applications. It is an integrated environment for managing containers that includes the container orchestrator Kubernetes, a private image repository, a management console, and monitoring frameworks.

Continue reading