API Authentication using IdP Provider Tokens
The API Authentication using Identity provider (IdP) tokens adds an extra layer of protection to your APIs. When this method is implemented for API authentication , IdP is used for user authentication and JWT token generation. This document covers onboarding and implementation details of IdP-based API Authentication.
Once you enable IdP-based API authentication, you can use either basic authentication or JWT tokens to access Qualys APIs.
Key Highlights
- Seamless integration of OIDC to enhance API authentication and authorization measures.
- Compatibility with current identity providers and authentication to facilitate a seamless integration experience.
- This authentication is supported by all Qualys APIs, /api/2.0/ and onward versions.
- Eliminates the need for users to provide a username and password. This streamlines Qualys API access by allowing users to use JWT tokens, bypassing the hassle associated with usernames and passwords.
Enable IdP-based API Authentication
- This feature is not available by default. Refer to the Onboarding Process to onboard with IdP-based API authentication.
- To set up this feature you must have an IdP.
Along with IdP Provider Tokens, you can use the Qualys Managed Tokens to access Qualys APIs. Refer API Authentication using Qualys Managed Tokens to learn more.
Benefits
- Enhanced API security: Uses tokens to establish a user's identity and grant access.
- Standardized access control: Provides a standardized way to manage user identities and access control
- Centralized Authentication: By enabling IdP-based authentication, users can authenticate once through your organization’s Identity Provider (IdP) and gain access to all the necessary APIs without needing to log in again. This simplifies the user experience and reduces password fatigue, making access faster and more secure.
- Compliance and Security: Helps to meet compliance requirements by ensuring that user authentication processes adhere to established security protocols like SAML and OIDC.
Related Topic: API Authentication using Qualys Managed Tokens | Token-based Authentication Support Matrix