Developers are responsible for selecting the authentication method for application users. They can select native authentication provided by the UAA or external identity providers.
After authentication, the Single Sign-On service uses OAuth 2.0 for authorization. OAuth 2.0 is an authorization framework that delegates access to applications to access resources on behalf of a resource owner.
Developers define resources required by an application bound to a Single Sign-On (SSO) service instance and administrators grant resource permissions.
Detailed installation guides are available for these identity management services: