Access Management and Environments on Software AG Cloud

Introduction:

This article explains about

  • Approach to secure the iPaaS offerings on Software AG Cloud.
  • Access Management for individual iPaaS offerings – i.e., webMethods.io Integration, webMethods.io API, webMethods.io B2B, webMethods Cloud Container and to the approach to secure the same.

Pre-requisites:

You have an active subscription of the above offerings, you can subscribe to new offerings on Software AG Cloud. Please look at the documentation here https://docs.webmethods.io/b2b/webmethods_io_b2b_quick_start/chapter31/#how-to-register.

Access Management

Tenant Administration

Software AG Cloud offers two types roles in this category.

  • Cloud-Tenant-Administrator: User subscribed to the Software AG Cloud offerings would inherit this role by default. Users part of this role would be able to perform the below platform administration areas,
    • Access Management: Can provision access to new users and manage their access for the individual offerings. Individual Platform access can be managed by the role association for the users. To perform this, navigate to Administration from the App Switcher.

  • Platform Subscriptions: Can subscribe to a the iPaaS offerings, manage the existing platform subscriptions – stop, extend trails. To perform this, navigate to My Cloud from the App Switcher.

  • Policy Management: Can manage the Password sensitivity, expiration, re-use, etc. To perform this, navigate to Administration from the App Switcher, and navigate to policies.
  • SSO Configuration: Can manage the integration with the external identity providers. To perform this, navigate to Administration from the App Switcher, and navigate to Single sign-on.
  • Account-Administrator: User subscribed to the Software AG Cloud offerings would inherit this role by default. However, this role is not enabled by default upon subscription for free trails. Reach out to Software AG support to enable this feature. This role is enabled only when Account Management feature is enabled.
    • Account Management: This feature requires Tenant to be configured with maximum number of environments that can be provisioned. This enables Account Administrator role and users part of this role can provision, link and manage more tenants as stages and these stages can be used for development lifecycle – e.g., Development, Testing, etc. Account Administrators can also manage stages as required. To perform this, navigate to Environments from the App Switcher.

4.Platform Access