Cloud Pak for Data

 View Only
  • 1.  how to centrally manages authorization and authentication.

    IBM Champion
    Posted Thu October 27, 2022 10:37 AM
    We are new to CP4D and have installed it on-prem.
    We need to have access to it from a Portal. We are wondering which token will be used by CP4D for the SSO with the authenticated area of the portal?
    Is there a module that centrally manages authorization and authentication?
    How we will transport the authorization data in order to restrict the correct visibility of data according to the category of users who come from the portal?

    Security on Cloud Pak for Data - IBM Documentation

    We have seen the doc but would appriciate any suggestion.
    Thanks

    ------------------------------
    Chiara Baldan
    ------------------------------


  • 2.  RE: how to centrally manages authorization and authentication.

    Posted Fri October 28, 2022 10:37 AM

    Try this document.

     

    Cloud Pak for Data SSO configuration using Azure IAM (ibm.com)

     

    It worked for us with small change. See below:

    export NS=${PROJECT_CPD_INSTANCE}

    export POD=$(oc get pod -n $NS -l component=usermgmt | tail -1 | cut -f1 -d\ )

    oc exec -n $NS po/$POD -it -- bash -c "mkdir -pv /user-home/_global_/config/saml"

    oc exec -n $NS po/$POD -it -- bash -c "vi /user-home/_global_/config/saml/samlConfig.json"

     

     

     

     

     




    This email has been scanned for email related threats and delivered safely by Mimecast.
    For more information please visit http://www.mimecast.com





  • 3.  RE: how to centrally manages authorization and authentication.

    Posted Mon October 31, 2022 11:57 AM
    Hi Chiara,

    What version of Cloud Pak for Data did you install? That will help me point you to the correct documentation for your environment.

    Best,

    ------------------------------
    JULIA Montarbo
    ------------------------------



  • 4.  RE: how to centrally manages authorization and authentication.

    IBM Champion
    Posted Wed November 02, 2022 04:22 AM
    Hello Julia,
    qat the moment we have versione v4.0 but we are planning to migrate to v4.5 in the next week. 
    Regards
    Chiara

    ------------------------------
    Chiara Baldan
    ------------------------------



  • 5.  RE: how to centrally manages authorization and authentication.

    Posted Wed November 02, 2022 03:57 PM

    Hi Chiara,

    I'm not sure whether you have already reviewed the following information for SSO in the Cloud Pak for Data documentation, but hopefully this helps:


    Please let me know if you have additional questions.

    Best,

    ------------------------------
    JULIA Montarbo
    ------------------------------



  • 6.  RE: how to centrally manages authorization and authentication.

    IBM Champion
    Posted 24 days ago
    Thanks Julia,
    very useful links.

    ------------------------------
    Chiara Baldan
    ------------------------------



  • 7.  RE: how to centrally manages authorization and authentication.

    IBM Champion
    Posted 13 days ago
    Hello Julia,
    we are now at versione 4.5. We are discussing internaly how to configure access to the platform.
    One question: Can we do SSO with SAML without censoring users?
    Thanks
    Chiara

    ------------------------------
    Chiara Baldan
    ------------------------------



  • 8.  RE: how to centrally manages authorization and authentication.

    IBM Champion
    Posted Wed November 02, 2022 04:21 AM
    Thanks Oleg, 
    not sure this will fit us. Need to discuss with our secuirty colleauges.
    Regards
    Chiara

    ------------------------------
    Chiara Baldan
    ------------------------------