About User Authentication and Authorization (UAA)

In Operations Hub, user authentication is handled using User Account and Authentication (UAA). UAA provides identity-based security for applications and APIs. It supports open standards for authentication and authorization, including Oauth2.

When a user is created, modified, or deleted in Operations Hub, the associated user account is being created, modified, or deleted in the UAA instance, respectively.

Note: This is done in the backend automatically. Therefore, most users will not need knowledge on UAA to perform basic user management, except when additional configuration is required.
To use UAA, you can choose among the following options:
  • Creating a new instance of UAA: Use this option if you are not currently using a UAA instance. Typically, this option is used if Operations Hub is used stand-alone without integrating with another product.
  • Using an existing UAA: Use this option if you are currently using UAA that contains users and groups. The users in the existing UAA instance can then use Operations Hub. You can then manage these users in Operations Hub. To use an existing instance of UAA, you must provide the details while installing Operations Hub.
    Note: Operations Hub supports UAA version 4.30.0 or later.

Regardless of whether you use a new or an existing instance of UAA, you can use an external identity provider, such as a Lightweight Directory Access Protocol (LDAP) service, to fetch the users and groups. You can then view these users and assign applications to them using Operations Hub. You cannot, however, modify these users using Operations Hub.