Content

Maximo Spatial and IBM Maximo Mobile both use OAuth 2.0 to securely authenticate with Esri ArcGIS services. The client_id and client_secret are configured on the server side, enabling secure communication between IBM Maximo and Esri ArcGIS servers. The token generation process happens exclusively on the server side, ensuring that credentials are never transferred to client applications. Instead, short-lived access tokens are used to authenticate requests to ArcGIS services, ensuring secure, token-based integration.

The process begins with administrators registering the IBM Maximo application with Esri ArcGIS to obtain the necessary credentials. These credentials are then configured in the Maximo Spatial Map Manager application, allowing the server to generate and manage tokens. This setup ensures that communication between Maximo and ArcGIS remains secure, and the credentials are kept safe on the server, away from the client-side applications like IBM Maximo Mobile or any browser based application from IBM Maximo.

The use of OAuth 2.0 provides multiple layers of security, ensuring that only authorized services are accessed and that the tokens expire regularly, minimizing potential security risks. This approach also supports the scalability and flexibility required in enterprise environments that manage complex spatial data.

For more technical details on OAuth 2.0 integration with ArcGIS, you can refer to the ArcGIS app authentication documentation.