Managing authorization and authentication

The Keycloak-based authentication service provided as part of the Z Operational Analytics common services supports a broad array of authentication and authorization flows, including multi-factor authentication as well as the integration with external single sign-on providers and LDAP providers.

IBM Z® Resource Discovery Data Service-specific data flows, however, are focused on unattended interaction between software components through the use of RESTful APIs. For these data flows, the use of basic authentication using locally defined user IDs is most appropriate.