Configuration of single sign-on

Edit online

Single sign-on services provide a seamless experience for a user who accesses a number of applications in the enterprise.

You can enable single sign-on for the Identity Manager administrative console, the Self-service console, and the Identity Manager Service Center applications with IBM® Security Verify Access.

After you configure single sign-on, a user logs on to IBM Security Verify Access web security one time. The identity of the user is propagated to Identity Manager, which eliminates the need for another login.

This function requires IBM Security Verify Access to enable single sign-on with Identity Manager.

  1. IBM Security Verify Access provides user authentication and coarse-grained authorization before it allows access to Identity Manager.
  2. Identity Manager then applies fine-grained access control with its own Access Control Item (ACI).
You can configure IBM Security Verify Access and Identity Manager for single sign-on with either
  • WebSEAL
  • IBM Security Verify Access plug-in servers

Before you configure single sign-on with WebSEAL, you must install and configure IBM Security Verify Access and WebSEAL.