IBM Security Verify

AAC - Global setting - Point of Contact

  • 1.  AAC - Global setting - Point of Contact

    Posted yesterday


    We have a situation where Authentication with "jwt bearer assertion" fails due to the claim on jwt token contains groups which are non "Access Manager groups".

    We are using prebaked profile "Non-AM Username, AM groups and extended attributes"

    Now we have two solutions

    1. import/create all groups Access manager (which looks practically impossible as we don't know which groups need to be added in advance before we see actual 401)
    2. And if possible create a profile that allows sessions for non-access manager groups also.

    Is it possible to create a profile in "point of contact" with non-access manager groups and users?

    Do you think it will work with solution 2?

    Piyush Agrawal