Create a connection

Connection is created automatically on IBM Security Verify. This process automatically performs the following steps on IBM Security Verify:

• Create a new Application
• Set the Application entitlements

This process automatically performs the following steps on Verify Access:

• Modify the Reverse Proxy configuration to enable OIDC authentication with IBM Security Verify

Once the wizard is complete, deploy the pending changes and restart the Reverse Proxy instance.

Steps

1. Click the Connect button under the Connect IBM Security Verify in to Verify Access heading to launch the setup wizard dialog.
2. Provide the Administration Hostname for the IBM Security Verify subscription to connect to. This hostname is typically of the format <subscription name>.ice.ibmcloud.com.

3. Click the Login to IBM Security Verify button. A new browser tab opens to the login page of the IBM Security Verify subscription. Complete the login using an account which has administrative entitlements. When the login is successful, the browser tab closes and the setup wizard continues. The setup wizard indicate the login to IBM Security Verify was successful.

4. Click the Next button to continue.

5. Click the Learn More button to see a summary of the changes that will be made to the IBM Security Verify subscription and to the ISAM appliance.
6. Provide the following information to the setup wizard:

   WebSEAL Instance

   Select the Reverse Proxy instance which is configured to allow logging in with IBM Security Verify.

   Web Hostname

   Enter the hostname used to access the Reverse Proxy instance. IBM Security Verify will use this hostname to construct a permitted redirect URI. If this hostname changes or additional hostnames are required, the list of valid redirect URIs can be modified later in IBM Security Verify.

   Application Name and Company Name

   A new application definition will be created on IBM Security Verify, these details will be used in the newly created application.

   All users are entitled to this application

   If this option is checked, all users known to the IBM Security Verify subscription will be able to use this application. If this option is not checked, you will be required to manually add the users to the appropriate groups in the IBM Security Verify application dashboard for them to access this application.

7. Click Configure to continue. The Local Management Interface now creates the application definition on IBM Security Verify and make the required changes to the Reverse Proxy instance. When this process is complete, the wizard automatically advances to the Success page.The Success page provides a summary of the changes made and next steps which are to be performed.
   1. To start using the Reverse Proxy,

      1. Deploy the pending changes and restart the Reverse Proxy instance.
      2. Access the Reverse Proxy and use the “OIDC Login” button to login: https://<web hostname>/.
   2. To manage application created on IBM Security Verify, use the IBM Security Verify administrative interface. The wizard provides a link to the IBM Security Verify launchpad which will now contain a new application named: <reverse proxy instance>_<random identifier>.

8. Click Close to end the setup wizard.

Parent topic: Connect IBM Security Verify to Verify Access