Update: We will be enabling Multi-factor Authentication for all applicable customers on March 8,2023.
IBMid is IBM’s identity-as-a-service offering, and the out-of-the-box OIDC authentication method for Cognos Analytics on Cloud. Aligned with IBM’s commitment to security, the Cognos team will be turning on Multi-factor Authentication (MFA) for our SaaS users who log in to Cognos on Cloud using IBMid. We plan to enable this security feature in 2023-1Q, after which, new logins will be prompted to complete the MFA setup. You can expect an update at least 2 weeks in advance of our implementation. In anticipation of this initiative, we wanted to cover some of the expected workflows around authentication.
Multi-factor Authentication (MFA)
- Strengthens security
- Meets regulatory compliance requirements
- Supports a zero-trust security strategy
Learn more about MFA
|
MFA requirement by authentication method:
|
|
|
|
IBMid
|
Required
|
|
IBMid federated with an enterprise IDP
|
Not required, but can be set manually
|
|
Other (OIDC, LDAP, Active Directory)
|
Not applicable
|
How does MFA affect my product experience?
When logging in to:
- Cognos Analytics on Cloud On-Demand (multitenant) environment using IBMid
- Cognos Analytics on Cloud Hosted (single-tenant) environment using IBMid
- Cognos Analytics on Cloud Hosted environment integrated with PA on Cloud
-
Users authenticating with IBMid will be first directed to the IBMid login screen:
-
Users will then be prompted with a new screen to set up additional evidence for login. The three available options are Email, the IBM Verify App and an Authenticator App (e.g. Authy, Google Authenticate, etc.). Select the applicable choice(s) and proceed to set up.
-
Once the MFA setup is completed, users will be requested to provide this evidence on future logins before being redirected to their Cognos Analytics on Cloud environment.
#CognosAnalyticswithWatson