Sometimes its necessary to quickly setup a demo host with IBM Security Verify Access (ISVA) and you need something that will output some diagnostic information. Introducing the https://resource-server-demo.verify.ibm.com/ This is an IBM Hosted demo host - that gives you some demo resources - so you can try out ACLs, or more elaborate configuration. Setting it... Continue Reading →
A simple but useful feature, is the ability in IBM Security Verify Access to compress rolled over files generated by the Reverse Proxy. This includes the audit logs, request logs, referrer logs etc. By default, the rolled over files are plain text, but this can add up - if you intend to store them for... Continue Reading →
Note: This has been superseded - with new OTP enrollement experience in v10.0.8. Where there is now a native enrollment mechanism. But the inline Authsvc callout from infomap might still be useful as an example. Sometimes you might want to put your own enrollment process into an authentication service flow. This might be for Just... Continue Reading →
How do you handle a partially authenticated state when the inbound user is either missing attributes, or needs to select from multiple mapped accounts when accessing resources protected by ISAM or what is now IBM Security Verify Access.
Over on the ISAM blog on ibm.com, I've just completed an indepth article on using ISAM with a Single Paged Application. These are typically applications that use JavaScript, AJAX, Angular and other frameworks to make a very dynamic user experience on a website. Think of any site you've used where the whole page doesn't reload... Continue Reading →
Philip Nye 