Verify subscription

Edit online

IBM® Verify offers identity and access management features in the cloud. To use any of these features, try or purchase Verify.

Previously, each use case capability was purchased as a separate subscription.

IBM Verify is now a single subscription that includes former subscriptions as use cases. See Subscription & usage [Preview] to monitor your Verify usage.

Capabilities

Verify capabilities contain the following features.
Table 1. Capability features
Name Description Features
Single Sign-On (SSO) Sign in to your applications with a single set of login credentials.
  • Federated Single Sign On (SSO) for cloud applications
  • Federated Single Sign On (SSO) for on-perm applications
  • Federated Single Sign On (SSO) for standards and nonstandards-based applications
  • Employee Launchpad
  • Application Delegation
  • Online Connector catalog
  • Conditional Access
  • SSO-specific reporting
  • Data privacy and consent management
  • UI Admin dashboard and application onboarding
  • Threat detection and password intelligence
  • External identity provider integration (OIDC, SAML, Active Directory, LDAP, and social providers)
  • Flow designer (orchestration)
Multi-Factor Authentication (MFA) With Verify multi-factor authentication, you can require multi-factor authentication to your applications.
  • Email
  • Voice and SMS (more purchase) per event
  • TOTP
  • FIDO2
  • Verity Authenticator (push, touch, biometric, and QRCode)
  • MFA-specific reporting
Adaptive Access With adaptive access, you can use a simple policy editor to design and apply adaptive access policies that automatically adjust the level of user authentication based on the level of risk.
  • Risk-based context that is powered by machine learning.
  • Advanced policy editor
  • Risk reporting
Lifecycle Management and Governance Lifecycle management and governance provide an automated management of user provisioning lifecycle, user self-service, and profile. In addition, evaluate business needs periodically for user access through certification campaigns.
  • Access approval workflow, two levels of approval
  • Access request workflow for employees
  • User provisioning or deprovisioning to SaaS and on-prem targets
  • Verify and target remediation policies and reconciliation.
  • Access entitlement recertification campaigns
  • Governance and lifecycle report
Analytics Identity analytics enables organizations to proactively reduce identity and access-related risks. It takes input from extensive data sources that include users and their accesses to identify what they are doing with those accesses. Identity analytics provides a 360-degree view of the managed environment and related access risks based on ready-to-use customizable risk criteria. Identity analytics also provides actionable intelligence to prioritize and remediate access risks.
  • Risk scores for users, entitlements, applications
  • Adjust parameters within each policy to adjust for sensitivity.
  • Confidence scores for anomalies within peer groups
  • Out of Box and Custom policies
  • Take action on identified risk.
  • Build customized remediation workflows.

Resource units

IBM Verify charges only for actual usage, so you can add or remove users or even product use cases within Verify at your own pace. Verify pricing uses resource units as a metric to quantify an organization’s dynamic usage between user populations and product use cases.

Verify resource units enable organizations to subscribe for a value-based quantity of usage metrics that can be freely used to consume any of the Verify capabilities. Organizations can subscribe to the number of resource units that they need to meet their planned usage. Resource units are purchased on an annual basis. To allow for seasonal spikes in usage, you no longer need to pay each month. Organizations can pay only for what they use and can expand to any of the other capabilities that Verify offers.

You can estimate your subscription's usage needs through the Price estimator. This pricing model excludes customers on older subscription plans.

Usage metrics

Resource unit usage is based on the following data depending on your subscriptions. The first three subscriptions are calculated by using the monthly active users and the monthly rate. For example, a user using an application counts as an active user for SSO. The last two are based on total cloud directory users and not activity.
  • SSO unique users computed with tier rate based on monthly unique users. This number is determined from SSO audit events.
  • MFA unique users computed with tier rate based on monthly unique users. This number is determined from authentication audit events with data.subtype=MFA.
  • Adaptive access unique users computed with tier rate based on monthly unique users. This number is determined from adaptive_risk audit events.
  • Total users in cloud directory via API for Lifecycle if they have the CIG subscription.
  • Total users in cloud directory via API for Analytic if they have the CIA subscription.

As you consume different use cases, you consume parts of a resource unit. Each use case can differ in what makes up a resource unit. During a year, as the total monthly active user count or total user count grows, the use case cost decreases as you grow through the tiers. The full description on how resource units are calculated, read the latest service description. The resource unit weighting is calculated annually. For example, Single Sign on for 500 monthly active users costs .1 RU a year per user. It equates to ~.008 RU per user per month within that tier.

Table 2. Annual metrics for maximum user count

The following table lists the rate of resource unit consumption for each subscription across the 10 tiers.
Generated tier Maximum user count Functional capability in weighted resource units required per active user Functional capability in weighted resource units required by total user count
Single sign-on Multi-factor authentication Adaptive access Lifecycle management and governance Analytics
1 500 0.1 0.1 0.1 0.29 0.12
2 5,000 0.08 0.08 0.08 0.075 0.1
3 10,000 0.06 0.06 0.06 0.05 0.075
4 100,000 0.008 0.008 0.008 0.005 0.02
5 500,000 0.0025 0.0025 0.0025 0.002 0.015
6 1,000,000 0.002 0.002 0.002 0.001 0.001
7 5,000,000 0.0015 0.0015 0.0015 0.0005 0.005
8 10,000,000 0.0015 0.0015 0.0015 0.0002 0.0002
9 50,000,000 0.001 0.001 0.001 0.0001 0.0001
10 999,999,999 0.0005 0.0005 0.0005 0.0001 0.0001
Note: All calculations are rounded up to a whole number.