Configuring authentication
Maximo Application Suite supports local user authentication by MongoDB, Lightweight Directory Access Protocol (LDAP) authentication, and Security Assertion Markup Language (SAML) authentication.
Regardless of where authentication is managed, access management and user privileges authorization is managed by Maximo Application Suite.
Local authentication by MongoDB
If no other authentication method is configured, user authentication is done by MongoDB, which acts as the default user repository. No additional configuration is required.
With local authentication, Maximo Application Suite provides single sign-on (SSO) for all fully integrated applications.
LDAP authentication
With LDAP, the user authentication is managed by your LDAP server. You can configure your Maximo Application Suite environment to use your own corporate LDAP server. Maximo Application Suite provides SSO for all fully integrated applications, and you can also configure external applications to use the same LDAP server.
With LDAP enabled, you can:
- Select to use LDAP authentication when you create new users. The user ID of the Maximo Application Suite user must match the ID of a corresponding LDAP user.
- Synchronize your LDAP user registry with Maximo Application Suite, immediately setting up your suite users from your existing user registry. Important: For synchronization, secure LDAP (LDAPS) is the only allowed protocol. Non-TLS connections are not supported.
You can configure Maximo Application Suite to use LDAP at setup or later.
For more information about configuring Maximo Application Suite for LDAP, see Configure LDAP.
SAML authentication
With SAML, the user authentication is managed by your SAML server.
When SAML is enabled, you can:
- Select to use SAML authentication when you create new users. The user ID of the Maximo Application Suite user must match the ID of a corresponding SAML user.
- Set up SSO for Maximo Application Suite and for any external application that supports SAML and that is accessed from the same browser.
You can configure Maximo Application Suite to use SAML at setup or later.
For more information about configuring Maximo Application Suite for SAML, see Configure SAML.