Leo Farrell has just published a new article on developerWorks called "Configure an ISAM reverse proxy as a PEP to an OpenID connect provider."
IBM Security Access Manager (ISAM) added OpenID Connect (OIDC) as a federation protocol in Version 9.0. OIDC includes the ability to configure an OpenID Provider (OP), which can issue user identities (id_tokens), as well as access tokens used for authentication in the same way that OAuth Version 2.0 does. This article explains how to configure a reverse proxy as a policy enforcement point that is compatible with the OpenID Connect–issued access tokens.
This article will be of interest to anyone who wants to use this open standard with IBM Security Access Manager.