VIP Authentication hub- SCIM for password authentication | Internal User authentication
Article ID: 278720
Updated On:
Products
Issue/Introduction
Within the new 2.2 release, there is the following APIs for password authentication from SCIM -->
https://{{sspHost}}/{{tenantName}}/ scim2/v1/PasswordAuthenticator
https://{{sspHost}}/{{tenantName}}/admin/v1/InternalIdStoreConfig
Can these apis used for INTERNAL Employee authentication?
How to configuration our internal ID store in AuthHub?
Environment
AuthHub 2.2 onward
Resolution
- The /scim2/v1/PasswordAuthenticator works only when AH is configured with the internal identity store.
If the user password is not saved in the AH and is with your internal portal then you can try using custom password authentication SPI.
Please refer to the below link for more details on the same:
- The internal ID store is automatically deployed and ready for use in Authentication Hub.
You cannot add another Internal Identity store to your deployment , only the one created with the deployment can be used.
The Internal Identity store can be used to perform Authentication , but you will need to have the users loaded in it.
Here is some links on this Topic from the Document
** Identity Service --> https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip-authentication-hub/2-2/overview-of-the-identity-service-.html
** Configuring the Internal Identity Store --> https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip-authentication-hub/2-2/Configuring/configuring-the-internal-id-store-with-identity-service/using-the-internal-id-store-configuration-and-configuration-apis.html
** Manage Users and Groups in the Identity Service --> https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/vip-authentication-hub/2-2/overview-of-the-identity-service-/manage-users-and-groups-in-the-identity-service.html
which shows the options on adding the users
Feedback
