IBM Support

Validity periods verified by the Cloud Pak for Data

Question & Answer


Question

Are the validity periods in SAML response verified by the Cloud Pak for Data ? 

Answer

Yes. Cloud Pak for Data verifies the validity period as returned by the Identity provider in the SAML response.


A sample SAML response's assertion may have this condition:

<saml:Conditions NotBefore="2020-11-06T14:54:11Z" NotOnOrAfter="2020-11-06T14:59:11Z">

Based on the values NotBefore and NotOnOrAfter in the example above, the validity period of the response is decided. The validity period in this example is 5 mins. If the response is sent before “2020-11-06T14:54:11Z” or sent on or after "2020-11-06T14:59:11Z” it will not be accepted by Cloud Pak for Data.

[{"Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSHGYS","label":"IBM Cloud Pak for Data"},"ARM Category":[{"code":"a8m0z000000Goy2AAC","label":"Overview"}],"ARM Case Number":"TS004178497","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Version(s)"}]

Product Synonym

Cloud Pak For Data

Document Information

Modified date:
17 November 2020

UID

ibm16369503