Authentication and Authorization

Edit online

Authentication and authorization are vital to security. Authentication process always proceeds to authorization process.

Authentication

Authentication is the process of verifying that users or applications are who they claim to be. Authentication is required for all users and applications that access the IBM PEM system. The default authentication mechanism is based on passwords that are hashed and stored in the database.

Authentication is based on passwords and multi-factor authentication. In case of multi-factor authentication an OTP is emailed to the user, which works as a second factor.

Note: If multifactor authentication is enabled, a one time password (OTP) is sent to the registered email ID of a user for the first time when the user signs in or whenever the browser cookies for IBM PEM expires.

For more information, see Generating one time password (OTP).

Authorization

Authorization is the process of verifying that users or applications have sufficient authority to access a resource.

Authorization includes predefined user roles and permissions that are available.

For more information about user roles and permissions, see Permissions and roles.