How To
Summary
Adds an attribute from Adaptive access information into claims of id_token on the OAuth federation configured Custom Application.
Objective
Adds country attribute from Adaptive access information into claims of id_token on the OAuth federation configured Custom Application.
The Adaptive access information can be taken by following attribute function.
- risk.getAdaptiveSessionData().country
Steps
- Define attribute with Adaptive access information
- On ISV admin console, navigate to "Directory > Attributes" page
- Create an Advanced rule type attribute with "Single sign-on (SSO)" supported
- Enter following code in "Compute the attribute value using a custom rule." field on "Source and values" tab
- risk.getAdaptiveSessionData().country
- Define Access Policy with Adaptive access enabled
- Navigate to "Security > Access policies" page
- Create an access policy with adaptive access enabled
- Modify Custom Application
- Navigate to "Applications > Applications" page
- Click "Settings" icon on target Custom Application
- Switch to "Sign-on" tab and find "Attribute mappings" section
- Add an attribute with custom name and choose created attribute in Attribute source
- Find "Setting" field on "Access policies" section
- Deselect "Use default policy" and choose created policy
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSCT62","label":"IBM Security Verify"},"ARM Category":[{"code":"a8m0z000000cxv1AAA","label":"Security Verify-\u003EAuthentication"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
25 October 2023
UID
ibm17059652