IBM Data and AI Ideas Portal for Customers


This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:


Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,


Post your ideas

Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,

  1. Post an idea

  2. Upvote ideas that matter most to you

  3. Get feedback from the IBM team to refine your idea


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

IBM Employees should enter Ideas at https://ideas.ibm.com


Add a new idea Subscribe
Status Delivered
Workspace Connectivity
Created by Guest
Created on Jan 13, 2023

RELATED IDEAS

ICP4D needs to implement support for using Google Workload Identity Federation(WIF)

ICP4D V4.5.3 needs to support the ability to add Google Workload Identity Federation(WIF) as an Authentication method so that we can move away from using service account JSON key for accessing(MDI and MDE) BQ projects.

Currently the Google BigQuery Connection type supports using a service account key as an Authentication method which has security concerns. The Google prescribed authentication method is Workload Identity Federation (WIF). To be able to use WIF the ICP4D needs to implement WIF as an Authentication method for the Google BigQuery connection Type.

Needed By Week
  • Admin
    Jacob Stellon
    Reply
    |     Feb 10, 2023


    Can you please tell us who provides the Client ID, Client Secret, Access token and Refresh token for this option?

    Your Database administrator / cloud account administrator should be able to provide these details.

    Can these be vaulted with cyberark? Is there any documentation on this?

    Yes. Credentials can be vaulted. Are you asking about documentation on the Vaulting the credentials ?

    BTW, we have already implemented a POC using WIF where IBM code does not need to deal with any identity provider directly. Our solution does that behind the scene as long as you provide the option to store Client_ID and Client_Secret in a cyberark vault. Will we be able to use cyberark to vault these two parameters?

    Based on the above comment, could you check if the option currently available in the connector (i.e., ClientID, ClientSecret, etc.) can be leveraged ?

  • Guest
    Reply
    |     Feb 10, 2023

    Jacob Stellon,

    Do we have any update on this?

  • Guest
    Reply
    |     Jan 30, 2023

    Jacob Stellon,
    Can you please tell us who provides the Client ID, Client Secret, Access token and Refresh token for this option? Can these be vaulted with cyberark? Is there any documentation on this?

    BTW, we have already implemented a POC using WIF where IBM code does not need to deal with any identity provider directly. Our solution does that behind the scene as long as you provide the option to store Client_ID and Client_Secret in a cyberark vault. Will we be able to use cyberark to vault these two parameters?

  • Admin
    Jacob Stellon
    Reply
    |     Jan 27, 2023

    Based on research on the Google Workflow Identity Federation, it can support multiple external identity providers. So, it would be essential to understand which identity provider is being used by the customer so that we can understand more about how it can be implemented. Could you provide us details on that ?

    Also, there is a new Authentication Method (User Token authentication) included that uses the ClientID, Client Secret , Access Token and Refresh Token and it does not require the Service Account JSON key. Could you check if this meets (fully or partially) your client requirements ?

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.