Hi, I'm Ask INFA!
What would you like to know?
ASK INFAPreview
Please to access Ask INFA.
Success
Manage your Success Plans and Engagements, gain key insights into your implementation journey, and collaborate with your CSMs
Customer Experience Accelerators
Accelerate your Purchase to Value by engaging with Informatica for Customer Success
My Engagements
All your Engagements at one place
 Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
 Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Experience Lounge
Self-guided, intuitive experience platform for outcome-focused product capabilities and use cases
 Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
SupportFlash
Monthly support newsletter
Product Availability Matrix
Product Availability Matrix statements of Informatica products
Product Lifecycle
End of Life statements of Informatica products
Pulse
Monitor the status of your Informatica services across regions
Events
Change Request Tracking
Marketplace
Trust Platform
English
  • API Center
  • All Products

Table of Contents

Search

  1. Preface
  2. API policies
  3. Security policies
  4. CORS policies
  5. Rate limit policies
  6. Response caching policies
  7. Privacy policies
  8. IP filtering policies
  9. Third-party authentication and authorization

API Policies

API Policies

Back Next

Federated or third-party authorization server support with OAuth 2.0 server

Federated or third-party authorization server support with OAuth 2.0 server

You can implement OAuth 2.0 authentication using federated or third-party providers such as, Okta and Azure AD, to secure your APIs effectively. This configuration enhances API security by leveraging external OAuth identity providers. You can streamline the authentication process, making it easier for developers to integrate secure access controls.
You can enable your API consumers to access protected resources using tokens generated from their preferred OAuth provider without pre-provisioning all API consumers through the IDMC identity provider.
You can fetch JWT access tokens from the identity provider and include the tokens in login requests. Before you use JWT access tokens, complete the following tasks:
  1. In IDMC, configure the organization to use SAML and set up users as SAML users.
  2. Set up an OAuth identity provider. You can use identity providers such as Azure Active Directory and Okta.
  3. In
    API Center
    , register the authorization server of the third-party identity service for authentication. For more information. see Register an authorization server.
  4. In
    API Center
    , assign the third-party users to specific APIs for authorization.
To log in, you need to obtain a JWT access token from the identity provider and include the token in a loginOAuth POST request. The token can be used for one REST API session. If the login request is successful, the response includes a session ID to use in subsequent API calls.
For information about OAuth setup using Azure Active Directory, see the following article: Set up OAuth with Azure AD
For information about OAuth setup using Okta, see the following article: Set up OAuth with Okta
For more information about identity provider configuration, see the identity provider's documentation.
For more information about registering identity providers and logging in using JWT access tokens, see REST API Reference.
0 COMMENTS
We’d like to hear from you!