Configuration of single sign-on

Edit online

Single sign-on services provide a seamless experience for a user who accesses a number of applications in the enterprise.

You can enable single sign-on for the IBM Verify Identity Governance administrative console, the Self-service console, and the IVIG Service Center applications with IBM® Security Verify Access.

After you configure single sign-on, a user logs on to IBM Security Verify Access web security one time. The identity of the user is propagated to IBM Verify Identity Governance, which eliminates the need for another login.

This function requires IBM Security Verify Access to enable single sign-on with IBM Verify Identity Governance.

  1. IBM Security Verify Access provides user authentication and coarse-grained authorization before it allows access to IBM Verify Identity Governance.
  2. IBM Verify Identity Governance then applies fine-grained access control with its own Access Control Item (ACI).
You can configure IBM Security Verify Access and IBM Verify Identity Governance for single sign-on with either
  • WebSEAL
  • IBM Security Verify Access plug-in servers

Before you configure single sign-on with WebSEAL, you must install and configure IBM Security Verify Access and WebSEAL.