Configuration of IBM Verify Identity Governance for single sign-on with WebSphere Trust Association Interceptor and IBM Security Verify Access WebSEAL
Trust Association Interceptor and WebSEAL authentication eliminates the need for a separate password to access IBM Verify Identity Governance.
To configure single sign-on with Trust Association Interceptor and WebSEAL, complete the following steps:
- Define how IBM Security Verify Access maps its accounts to IBM Verify Identity Governance accounts during authentication.
- Create a user in IBM Security Verify Access that WebSEAL can use to connect to the backend server.
- Create a junction that points to the IBM Verify Identity Governance server.
- Define two IBM Security Verify Access ACLs to control access to IBM Verify Identity Governance. Define one ACL for the IBM Verify Identity Governance Administrator application. Define ACLs for the IBM Verify Identity Governance Self Service application and the Identity Manager Service Center application.
- Configure WebSphere to point to IBM Security Verify Access.
- Configure the Trust Association Interceptor.
- Configure IBM Verify Identity Governance to use single sign-on.
- Configure WebSEAL.