Question & Answer
Question
What is the difference in automatic renewal of trusted credentials between AD/LDAP and in 11.x.x OpenID Providers?
Answer
The automatic renewal of trusted credentials is dependent on the provider implementation. If the provider has the information required to update the credential they will be update but this is not always the case. This is why we initially documented that it only works when using basic credentials to authentication to Cognos; this is not the case for OIDC.
See https://www.ibm.com/support/knowledgecenter/SSEP7J_11.1.0/com.ibm.swg.ba.cognos.ug_cra.doc/t_auto_renew_credentials.html.
For OIDC, if the provider supports "refresh token" then you can configure the provider to use this option and the token will be refreshed when the user logs on.
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSTSF6","label":"IBM Cognos Analytics"},"Component":"","Platform":[{"code":"PF033","label":"Windows"}],"Version":"All Versions","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]
Was this topic helpful?
Document Information
Modified date:
23 March 2020
UID
ibm16115840