IBM Verify

Edit online

IBM® Verify is a non-disruptive IDaaS solution that bridges from on-premises Identity and Access Management (IAM) to the cloud.

IBM Verify speeds business agility to adopt cloud applications, increases user productivity with single sign-on from any device, and enables greater IT efficiency by extending existing infrastructure.

Support For more information, see solution overview in the IBM Verify Documentation Hub.

The following illustration shows the IBM Verify key features.Shows connections among employees, service providers, and directory servers to IBM Verify for access to various apps.

Verify can be used as a:
Service provider

You can integrate Verify with multiple identity providers such as IBM Verify Access or Microsoft Active Directory and use them to authenticate users.

Identity provider

You can integrate Verify with any application service providers by using predefined or custom templates available from the Verify application catalog.

Features

Verify offers the following features:
Adaptive access
Enforces the appropriate level of authentication and blocks access only when needed so that trusted users can freely interact with your system. See Managing adaptive access.
API access management
Ability to add, edit, or delete API clients to allow in-house applications to use Verify functions. See Managing API access.
Application management
Ability to onboard applications in Verify and to assign application access entitlements, by using predefined or custom application templates. See Configuring applications.
Attribute source management
Ability to create, edit, or delete additional attribute sources that are used in attribute mapping. See Managing attributes.
Authentication as a service
Ability to enforce the use of a second factor to authenticate the identity of a user. See Configuring authentication factors.
Certificate management
Ability to add or delete personal certificates or signer certificates. See Managing certificates.
Conditional access
Enforces only entitled users and devices to access applications. See Configuring conditional access.
Dashboard
A consolidated view of the different statistics that are tracked in Verify. See Dashboard overview.
Governance
Ability to onboard applications for deep provisioning, perform periodic access certification, enable request access workflows as well as govern the user accounts and entitlements from target applications.
Identity sources management
Ability to add, edit, or delete the supported types of identity sources. See Managing identity providers.
Single sign-on
Users can single sign-on to their favorite applications through Verify. See Configuring SAML single sign-on in the identity provider and Configuring OpenID Connect single sign-on in the custom application.
User management
Ability to create, edit, or delete users, and to reset users' passwords. See Managing users.

Personas

The following table lists the main roles or personas that can use Verify:
Table 1. Persona descriptions
Persona Descriptions
Administrator Manages the overall configuration of Verify.
Application owner The business managers, who manage the users' access to applications.
User The employees who are concerned with seamless access to their applications.
Application developer Develops applications for organizational-wide access.

User interface

Log in to Verify at https://<hostname>.verify.ibm.com/ui/admin/.

Verify administrators, application owners, and users have different views.