Supported authentication providers

The system uses the OpenID Connect (OIDC) protocol to communicate with supported authentication providers. The system does not currently support the Security Assertion Markup Language (SAML) protocol.

Multifactor authentication
The system supports the following MFA providers:
  • IBM® Security Verify
  • Duo Security
Single Sign-on
The system supports the following SSO providers:
  • IBM Security Verify
  • Microsoft Active Directory Federation Services (AD FS)
  • Microsoft Azure Entra ID
  • Okta
  • Duo Security
  • PingOne

Single sign-on providers are often used to provide multifactor authentication in addition to single sign-on. For example, Microsoft AD FS supports a range of third-party authentication providers for additional multifactor authentication capability such as Duo Security, RSA and Okta. For more information, see Configure Additional Authentication Methods for AD FS.

Note: Connections to authentication providers might break if you change the SSL security level. This happens if the authentication providers do not support any of the ciphers and protocols allowed at the set level, particularly TLS 1.3. In this case, you can revert to a lower level of security to restore connectivity.