IBM Sustainability Software - Ideas Portal
Hide about this portal


This portal is to open public enhancement requests against the products and services belonging to IBM Sustainability Software. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Functionality already exists
Workspace IBM MAS - Common Services
Created by Guest
Created on Sep 27, 2024

RELATED IDEAS

Security Tool to Test Dual Security Configurations in Lower Environment

See this idea on ideas.ibm.com

Let us consider one example. We have implemented SAML only in Production. SAML is not implemented in our non-production environments. In UAT or Development environments, Business Support and/or IT are required to log in using other users' IDs to replicate incidents, issues, bugs, and test enhancements.


Recently, I designed a solution to prevent single point of failure (SPF) for JMS Store. All Queues across the integration share only one JMS Store as part of the OOB MAS design. JMS store corruption occurs when there is a high volume of messages. Due to SPF, we lose all integration messages.


The solution we developed for SPF involved creating a separate JMS store for each queue. As a result, we have created one queue per external system to separate its traffic.


This solution also involves one POD per JMS store. In environments without SAML, this solution worked well. In production, however, this solution failed, and we encountered some cert/authentication issues, as well as some other unknown login issues.


In order to find the root cause of the problem, we decided to test our SPF solution in lower environments with SAML, but only for select users. In non-production environments, we do not intend to implement SAML for all users. Therefore, we are looking for an internal tool that will allow us to implement dual security for a select group of users.

Idea priority High
Needed By Quarter
  • Post comment
  • Guest
    Reply
    |     Nov 6, 2024

    We are using MAS8 8.1.7, and we don't see this functionality. Not sure if this is added to MAS 9.x.

  • Guest
    Reply
    |     Oct 24, 2024

    I will connect with you today if you have some time. I want to make sure we both are on same page.

  • Admin
    Andrew Foster
    Reply
    |     Oct 24, 2024

    Starting in Maximo Application Suite 8.11, you can configure local, SAML, or LDAP authentication to provide multiple login options that users can authenticate to when they log in. You can also specify a default identity provider to be the primary login option for users on the suite login page.

    https://www.ibm.com/docs/en/mas-cd/continuous-delivery?topic=authentication-methods

  • Guest
    Reply
    |     Oct 23, 2024

    One user to get two login screens :
    1. SAML

    2. Local

    I didn't find it. Maybe I am missing?

  • Guest
    Reply
    |     Oct 23, 2024

    MAS 8.7.12

  • Admin
    Andrew Foster
    Reply
    |     Oct 23, 2024

    Hi - I'm not sure I follow the details of the solution you outlined but we do already support multiple authentication route for a single user ID in the latest version of MAS.

    Can you confirm the version you are using?

    Have you explored our capabilities to integrate with multiple authentication providers as well as local login?

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.