IAM adoption guide

This topic covers the Identity and Access Management (IAM) concepts in your product and discusses how users and content workloads can leverage your product IAM services for authentication and authorization. It also covers the IAM features and the related API specification.

At a high level, your product provides authentication support via the OpenID Connect (OIDC) specification. Your product also supports Security Assertion Markup Language (SAML)-based federated authentication is also supported. The authorization framework aligns with the Cloud IAM with some your product-specific customization, such as grouping user and resource entities under a team construct.

The authentication and authorization details are explored in the following topics:

• How a user uses your product authentication and authorization services
• How a content workload uses your product authentication and authorization services
• How IAM is used for service to service communication
• How IAM is used for OpenShift

For IAM adoption, you might need cluster configuration details. To get cluster information, see Cluster configuration ConfigMap.

For troubleshooting, see Troubleshooting IAM.

For APIs, see IAM APIs.