Maximo Open Forum

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

I believe that Maximo Mobile authenticates against MAS Core and then uses that session for the sequential API calls into Manage. This approach would allow you to use native, LDAP, or SAML authentication even with MFA enabled. Getting into this type of authentication can get tricky quickly. I recommend sticking with a Manage level API key when interesting with those APIs.  

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

Thanks API key works fine but I need to provide user access to certain things and I need to auth him via MAS and then read/ update certain OS. In that case creating api key for each user is not ideal.

I believe that Maximo Mobile authenticates against MAS Core and then uses that session for the sequential API calls into Manage. This approach would allow you to use native, LDAP, or SAML authentication even with MFA enabled. Getting into this type of authentication can get tricky quickly. I recommend sticking with a Manage level API key when interesting with those APIs.  

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

You'll need to build an interactive UI like we do for Maximo Mobile or the MAF configuration to authenticate the session and then provide the x-access-token and other headers on subsequent requests to the /maximo/oslc (not /maximo/api) context. To the best of my knowledge, we don't have anything like this documented because how you implement it will be unique for your application. 

The one piece I can share is how you register a new OpenID client. For the MAF configuration app, we don't register this out of the box so we documented how to do it here: https://ibm-mas.github.io/cli/commands/configtool-oidc/ . You would need to replace the various parameters with the correct settings including the TRUST_UI_PREFIX to be for your application. 

Thanks API key works fine but I need to provide user access to certain things and I need to auth him via MAS and then read/ update certain OS. In that case creating api key for each user is not ideal.

I believe that Maximo Mobile authenticates against MAS Core and then uses that session for the sequential API calls into Manage. This approach would allow you to use native, LDAP, or SAML authentication even with MFA enabled. Getting into this type of authentication can get tricky quickly. I recommend sticking with a Manage level API key when interesting with those APIs.  

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

Thanks Steven,
1. By interactive UI, can you explain it a bit more or point to some documentation.  
2. Open ID client, will that only work one installation of MAS? 

You'll need to build an interactive UI like we do for Maximo Mobile or the MAF configuration to authenticate the session and then provide the x-access-token and other headers on subsequent requests to the /maximo/oslc (not /maximo/api) context. To the best of my knowledge, we don't have anything like this documented because how you implement it will be unique for your application. 

The one piece I can share is how you register a new OpenID client. For the MAF configuration app, we don't register this out of the box so we documented how to do it here: https://ibm-mas.github.io/cli/commands/configtool-oidc/ . You would need to replace the various parameters with the correct settings including the TRUST_UI_PREFIX to be for your application. 

Thanks API key works fine but I need to provide user access to certain things and I need to auth him via MAS and then read/ update certain OS. In that case creating api key for each user is not ideal.

I believe that Maximo Mobile authenticates against MAS Core and then uses that session for the sequential API calls into Manage. This approach would allow you to use native, LDAP, or SAML authentication even with MFA enabled. Getting into this type of authentication can get tricky quickly. I recommend sticking with a Manage level API key when interesting with those APIs.  

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

Hi Achref Ghezil,

Can you explain it a bit more. 
Which end point did you send the username and password. 
and were you able to authenticate using user and password only?

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

I did it with this url for example https://<mas manage url>/maximo/oslc/os/mxapiasset and Basic auth header
Basically,

• when the Follow Authorization header setting param is disabled (which is the default setting) 
  Maximo does redirection to the mas core authentication service without the authorization header -> the MAs core authentication service redirect us to the login page.
• when the Follow Authorization header setting param is enabled 
  the manage endpoint does the redirection to the mas core authentication with the authorization header -> the service generates some cookies and redirect back to the manage endpoint who uses these cookies to authenticate and send the response back.
  

you can make the experience and track the traffic in the postman console to see what happens

Hi Achref Ghezil,

Can you explain it a bit more. 
Which end point did you send the username and password. 
and were you able to authenticate using user and password only?

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------

Thanks for the response. Is it possible to include a screenshot of this settings.
I cannot find it in postman documentation. The closest thing I found is 
Retain headers when clicking on links
Thanks.

I did it with this url for example https://<mas manage url>/maximo/oslc/os/mxapiasset and Basic auth header
Basically,

• when the Follow Authorization header setting param is disabled (which is the default setting) 
  Maximo does redirection to the mas core authentication service without the authorization header -> the MAs core authentication service redirect us to the login page.
• when the Follow Authorization header setting param is enabled 
  the manage endpoint does the redirection to the mas core authentication with the authorization header -> the service generates some cookies and redirect back to the manage endpoint who uses these cookies to authenticate and send the response back.
  

you can make the experience and track the traffic in the postman console to see what happens

Hi Achref Ghezil,

Can you explain it a bit more. 
Which end point did you send the username and password. 
and were you able to authenticate using user and password only?

I am trying to authenticate a user using postman with MAS (Manage).

It works fine when using API key.

My requirement is to authenticate using username and passsword.

I tried the maxauth, basic or form based authentication from this guide IBM Maximo REST API Guide – Authentication but oes not seem to work.

How do we authenticate users with MAS (Manage) using a username and password?

Is it documented anywhere?

How does Maximo mobile app does it

#Integrations
#MaximoApplicationSuite

------------------------------
Rana Ahmed
Maximomize
------------------------------