Overview
This course teaches you the developer skills that are required to configure and implement authentication and authorization support within your IBM DataPower Gateway V7.5 services.
A common requirement for DataPower services is to authenticate the sender of a message, and authorize that sender to request the messages behavior. The AAA action within DataPower provides the basics of the authenticate, authorize, and audit support.
OAuth is an authorization framework that defines a way for a client application to access server resources on behalf of another party. It provides a way for the user to authorize a third party to their server resources without sharing their credentials. DataPower supports OAuth specifications and protocols and can provide an OAuth web token service.
OpenID Connect (OIDC) is an authentication layer that runs on top of an OAuth 2.0 authorization framework. DataPower can operate as an OIDC client.
Skills Covered
- Describe the AAA framework within the IBM DataPower Gateway
- Explain the purpose of each step in an access control policy
- Configure a AAA action to enforce authentication and authorization policies that are in a AAA information file and in an LDAP server
- Describe the OAuth 2.0 framework
- Explain the role that a DataPower gateway performs in an OAuth 2.0 framework
- Configure the DataPower objects that are used for OAuth 2.0 interactions
- Define Social Login
- Describe how to configure Social Login in DataPower
- Configure an OIDC client
Who Should Attend
This course is designed for integration developers who configure service policies on IBM DataPower Gateways.
Course Curriculum
Course Modules
Exam & Certification
This course is not associated with any Certification.