Community
Search Options
Search Options
Log in
Skip to main content (Press Enter).
Sign in
Skip auxiliary navigation (Press Enter).
Security
Topic groups
IBM Security Cloud Pak for Security
IBM Security Global Forum
IBM Security Guardium
IBM Security MaaS360
IBM Security QRadar
IBM Security QRadar SOAR
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
IBM Security Skills & Learning
User groups
Events
TechXchange Day
IBM TechXchange Conference
Upcoming Security Events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Gamification Program
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Security Users
All IBM TechXchange Community Users
Resources
IBM TechXchange Group
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Support 101
IBM Technology Zone
IBM Training
Security Blogs
IBM Security Experts
Security Learning Academy
Request for Enhancements
IBM TechXchange Community Partner Program
TechXchange Day
Marketplace
Marketplace
IBM Security
Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.
Start collaborating
Join us for IBM TechXchange Day: AI and Automation
Skip main navigation (Press Enter).
Toggle navigation
Search Options
Security User Groups
User Group Tag Test
IBM Technical Exchange India Security User Group
Private Group
View Only
Group Home
Discussion
49
Library
9
Blogs
11
Events
0
Members
307
Share
Securing API Client access over the trusted IPs
By
Nilesh Atal
posted
Fri May 21, 2021 08:35 AM
0
Like
Introduction
IBM Security Verify
provides a vast collection of APIs which developers can leverage to build their own programming. In order to secure API access, an API client needs to be created which is used to generate the access token. Access token has powerful capability and hence use of these tokens need to be constrained over legitimate network. IBM Verify provides a way to define allowed / restricted list of network IPs for each API client.
Configuration
Tenant administrator can define the allowed / restricted list of network IPs while creating the API client
.
Login to Verify as Tenant administrator
Navigate to
Configuration > API acces > API clients
Click
Add API client
Select
Entitlements
Click
Next
Click
Next
on
Custom scopes
On
IP filter
step select checkbox for
Enable IP filtering
Define
Allow list / Deny list
Click
Next
on
Additional properties
step
Provide
Name
and
Description
on
Confirm configuration
step
Click
Create API client
Newly created API client is ready to consume
Now the newly created API client
can only be used over the allowed network IPs
. IBM Verify will restrict the client if any request is not from the allowed IP list.
To know more read
IBM Security Verify
---------------------------------------
NILESH ATAL
IBM Security (India Software labs)
---------------------------------------
#IBM-Security-Verify
#identity
#SAML
#Security
#Security-verify
#Verify
0 comments
10 views
Permalink
Security
Topic groups
IBM Security Cloud Pak for Security
IBM Security Global Forum
IBM Security Guardium
IBM Security MaaS360
IBM Security QRadar
IBM Security QRadar SOAR
IBM Security Trusteer
IBM Security Verify
IBM Security Z Security
IBM Security Skills & Learning
User groups
Events
TechXchange Day
IBM TechXchange Conference
Upcoming Security Events
IBM TechXchange Webinars
All IBM TechXchange Community Events
Participate
Gamification Program
Getting Started
Community Managers' Welcome
Post to Forum
Share a Resource
Share Your Expertise
Blogging on the Community
Connect with Security Users
All IBM TechXchange Community Users
Resources
IBM TechXchange Group
IBM Champions
IBM Cloud Support
IBM Documentation
IBM Support
IBM Support 101
IBM Technology Zone
IBM Training
Security Blogs
IBM Security Experts
Security Learning Academy
Request for Enhancements
IBM TechXchange Community Partner Program
TechXchange Day
Marketplace
Marketplace
Powered by Higher Logic