List of Contributions

Piyush Agrawal

Gjensidige Norway

Contact Details

Gjensidige Norway

My Content

1 to 20 of 50+ total
Posted By Piyush Agrawal Tue March 12, 2024 04:26 PM
Found In Egroup: IBM Security Verify
\ view thread
Dear IBM ISVA Community, We are exploring the possibility of implementing a status page similar to https://signicat.statuspage.io within our infrastructure. The objective is to effectively report any non-200 server response codes from our junction backend server as downtime incidents. We are considering ...
Posted By Piyush Agrawal Sun February 11, 2024 03:22 AM
Found In Egroup: IBM Security Verify
\ view thread
If securing the Management Interface API with OAuth or Basic Auth, along with fine-grained access control, isn't feasible, then our next best approach would be to consolidate them behind junctions under a WebSeal. This would enable us to leverage ACL and POP with OAuth effectively. ------------------------------ ...
Posted By Piyush Agrawal Fri February 02, 2024 08:01 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello IBM Community, Hope this message finds you well. We're currently working on integrating ServiceNow with ISVA and need some guidance on best practices for creating a user with restricted access. The goal is to limit the user's access to specific endpoints, namely: /net/general /net/dns ...
Posted By Piyush Agrawal Mon January 22, 2024 07:57 AM
Found In Egroup: IBM Security Verify
\ view thread
Dear IBM ISVA Community, I am reaching out to inquire about the support for OAuth 2.0 Pushed Authorization Requests(rfc9126) in ISVA. Could you please provide information on whether ISVA have supports OAuth 2.0 Pushed Authorization Requests? If so, could you also provide details on how this feature ...
Posted By Piyush Agrawal Wed January 17, 2024 09:15 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, I am interested in implementing passkey support on our reverse proxies, aiming for a user experience similar to https://www.passkeys.io. I'm specifically looking for a solution that leverages browser inbuilt user experiences without the need for custom designs. Could anyone provide information ...
Posted By Piyush Agrawal Fri September 01, 2023 04:15 AM
Found In Egroup: IBM Security Verify
\ view thread
Migration from tfimsso to jwt stanza has been challenging for us due to several reasons: Absence of a Global JWT Stanza: Unlike [tfimsso], there is no global JWT stanza. Consequently, every junction with JWT necessitates deployment and a restart. AZN_CRED_GROUPS::groups Attribute ...
Posted By Piyush Agrawal Sat April 15, 2023 06:03 AM
Found In Egroup: IBM Security Verify
\ view thread
Thanks for reply @HANS VANDEWEGHE . Actual cmd looks like server task prod.domain.com-webseald-isam-dmz-prod create -f -t tcp -h P-001-270-200.dom.no -p 4259 /api-name ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway ----- ...
Posted By Piyush Agrawal Sat April 15, 2023 02:48 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, We are getting following error while creating junction... on existing proxy on ISVA 10.0.4 pdadmin sec_master> server task default-webseald-cruz create -t tcp -h cruz.dallas.ibm.com /myjunction Error: DPWWM1318E Cannot create junction DPWWA3150E The key with the label, %s, ...
Posted By Piyush Agrawal Wed March 15, 2023 04:49 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, Do we have any update on this? ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway ------------------------------
Posted By Piyush Agrawal Tue February 21, 2023 04:18 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, It will be very nice if someone can put light on this topic. @Gianluca Gargaro I was looking for thread Reporting based on ISAM 9.0.7 where you reffer to https://github.com/gigderoma/isam-exporter/blob/master/isam-exporter.py which doesn't exist anymore Is it possible to get access ...
Posted By Piyush Agrawal Mon November 07, 2022 07:28 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, Time has come to start migration of On Premises ISVA Appliance to Cloud with Kubernetes. Do we have latest documentations/Guideline or any cookbook for it? ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway --------------- ...
Posted By Piyush Agrawal Wed October 12, 2022 07:55 AM
Found In Egroup: IBM Security Verify
\ view thread
Thanks Scott, I have just created Case TS010898698 , I am not sure if it is on currect category as I couldn't find IAG as topic ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway ------------------------------
Posted By Piyush Agrawal Tue October 11, 2022 11:05 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello, We need an urgent support to understand what we are doign wrong in following case. We have started working on IAG with OIDC setup and our React based frontend after login are requesting APIs which are behind IAG. Customer Facing Frontent Domain : www.testdomain.com ...
Posted By Piyush Agrawal Wed September 28, 2022 06:13 AM
Found In Egroup: IBM Security Verify
\ view thread
Hello @Scott Exton, We really need to make this work. have you come across uses cases like this? Now a days bany backend resources are migrating from old REST to gRPC and they want to know if IAG can be used or not. Regards, Piyush​ ------------------------------ Piyush Agrawal https:// ...
Posted By Piyush Agrawal Tue May 24, 2022 04:19 PM
Found In Egroup: IBM Security Verify
\ view thread
Hello, we are on ISVA 10.0.3 and running with following oauth Config on boht DMZ and MMFA proxy [oauth] external-user-identity-attribute = username user-identity-attribute = ext-username external-group-attribute : groups And Secure Federation - Global Settings - Point of Contact has "Non-Access ...
Posted By Piyush Agrawal Mon February 21, 2022 01:59 PM
Found In Egroup: IBM Security Verify
\ view thread
Hello, We have an reverse proxy on ISVA 10.0.2 where user needs to login to access protected resource which has a policy/POP which block access between 02:00 and 06:00 AM. The problem is ACL is triggered as soon as user tries to access resource and login page is presented due to ACL. and after login ...
Posted By Piyush Agrawal Tue January 25, 2022 05:52 AM
Found In Egroup: IBM Security Verify
\ view thread
Thanks @Scott Exton my colleague will raise a ticket.. ​ ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway ------------------------------
Posted By Piyush Agrawal Mon January 24, 2022 03:51 PM
Found In Egroup: IBM Security Verify
\ view thread
Hello, We have upgraded from 10.0.2 to 10.0.3 on our Dev and Test Appliance and we have started getting error. We have an STS Change with Default Map module And Javascript has first few line importPackage(Packages.com.tivoli.am.fim.trustserver.sts); importPackage(Packages. ...
Posted By Piyush Agrawal Thu December 02, 2021 05:21 PM
Found In Egroup: IBM Security Verify
\ view thread
Now I have moved my code to production but its failing due following error /access_control/runtime/trace.log com.tivoli.am.fim.oidc10.rp.exception.OidcRuntimeException: FBTOIC116E There was an error contacting the [token]. The HTTP Status was: [400]. The JSON error code was: [invalid_request], ...
Posted By Piyush Agrawal Thu December 02, 2021 05:14 PM
Found In Egroup: IBM Security Verify
\ view thread
Thanks you Jon, I tried what you suggest and finally I have manage to add groups with stsuu.addGroup(new Group("groupname","urn:ibm:names:ITFIM:5.1:accessmanager",null)); ------------------------------ Piyush Agrawal https://www.linkedin.com/in/piyush-norway/ Gjensidige Norway ----------- ...