Reputation: 11
Jenkins Authentication using IBM Tivoli Access Manager
I am considering integrating IBM's Tivoli Access Manager with Jenkins for user authentication. TAM uses something called a WebSeal to allow users to login and then forwards the creds for that user in the HTTP header to the desired service. I am new to Jenkins and was wondering what would be the easiest approach to do this. I noticed that the existing OpenId plugin extends the FederatedLoginService currently present in Jenkins. Could something similar be done to integrate TAM? If not, where would I extend Jenkins to allow the extraction of the creds form the header provided by WebSeal?
Thanks in advance.
Upvotes: 1
Views: 590
Answers (1)
Reputation: 25461
To make @daniel-beck’s suggestion into a concrete answer: the Reverse Proxy Auth plugin is the way this sort of integration is normally done in the absence of a dedicated SSO plugin, though I do not know specifically whether WebSEAL sends headers suitable for consumption by this plugin. From what I can glean by searching, you would get HTTP_IV_USER and HTTP_IV_GROUPS.
Upvotes: 1
Related Questions
- Authenticate with remote jenkins using CLI
- Using credentials in Jenkins Promoted Builds
- Jenkins User's authorization to deploy
- python jenkins.jenkins module: how to login to jenkins with third party sso
- Jenkins integration with Auth0
- How to setup authentication on jenkins
- User Authentication on Jenkins through java
- Jenkins and Visual Studio Online integration authentication
- Authentication with Jenkins and Git
- connecting to Jenkins with own openid provider (simpleid)