This portal is to open public enhancement requests against products and services offered by the IBM Data & AI organization. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).
Shape the future of IBM!
We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:
Search existing ideas
Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updateson them if they matter to you. If you can't find what you are looking for,
Post your ideas
Post ideas and requests to enhance a product or service. Take a look at ideas others have posted and upvote them if they matter to you,
Post an idea
Upvote ideas that matter most to you
Get feedback from the IBM team to refine your idea
Specific links you will want to bookmark for future use
Enhance Identity Insight Explorer and i2 II plug-in to use the full Liberty authentication framework
THIS IS FOR IBM INFOSPHERE IDENTITY INSIGHT*****
We have deployed Identity Insight (II) v9, which uses IBM Liberty and supports the full Liberty framework for authentication. Our II Liberty implementation is configured to use an OpenIdConnect (OIDC) client for authentication with and OIDC server (Okta). This configuration is significant in that we have to conform with the State of New York's enterprise standard of OIDC with Okta. The NYS enterprise Okta ID provider solution uses the statewide LDAP directory. Administration of User IDs and Group IDs is centrally managed for all 65 agencies in the State with well established rules, policies and processes. Unfortunately, two key components of the II product, II Explorer and the i2 Analyst Notebook plug-in for II, do NOT presently support the full Liberty framework for authentication. Rather, they support ONLY the Liberty basic authentication scheme, which is a manual configuration of users and passwords within each deployed Liberty server. This is highly suboptimal for these reasons: 1) There are hundreds of users that now need to be manually administered across multiple Liberty servers, which the NYS central enterprise staff refuse to own, 2) This does not conform with the NYS standard for identity management, 3) There is no way to configure and support a Single SignOn solution.
Do not place IBM confidential, company confidential, or personal information into any field.