Can we configure BAW to connect to external identity provider that supports open id connect like Key cloak or duende identity server

so that I can assign user tasks to IDM users

------------------------------
Mohamed Sobhy
------------------------------

Yes, please see https://www.ibm.com/docs/en/baw/25.0.x?topic=environment-configuring-third-party-authentication-products

Even when connecting to an IdP for authentication, you still need access to user, group, and membership data, hence you still need to connect to LDAP.

https://www.ibm.com/docs/en/was/8.5.5?topic=users-configuring-openid-connect-relying-party describes the traditional WebSphere OIDC configuration.

------------------------------
Jens Engelke
------------------------------

Original Message:
Sent: Thu October 16, 2025 03:52 AM
From: Mohamed Sobhy
Subject: Configure BAW to connect to external identity provider

Can we configure BAW to connect to external identity provider that supports open id connect like Key cloak or duende identity server

so that I can assign user tasks to IDM users

------------------------------
Mohamed Sobhy
------------------------------

You can do that on containers as well where we use CPFS in the background. I have tried a couple of scenarios with integration to external IDPs like Auth0, ID.me, RHSSO (based on keycloak). 

------------------------------
Gaurav Bhargava Lead Business Automation Devops Engineer
Lead Business Automation DevOps Engineer
Salient Process CAN INC
Vancouver BC
7788871893
------------------------------

Original Message:
Sent: Thu October 16, 2025 03:52 AM
From: Mohamed Sobhy
Subject: Configure BAW to connect to external identity provider

Can we configure BAW to connect to external identity provider that supports open id connect like Key cloak or duende identity server

so that I can assign user tasks to IDM users

------------------------------
Mohamed Sobhy
------------------------------