Lack of clear documentation on CAM with SSO (IntegratedSecurityMode 5)

[paulsimongb]

Describe what did you try to do with TM1py

I am trying to follow this:

CAM with SSO (IntegratedSecurityMode 5)
with TM1Service(address="", port=12354, ssl=True, namespace="LDAP", gateway="http://web-host:80/ibmcognos/bi/v1/disp") as tm1:
print(tm1.server.get_product_version())

However, it is unclear whether :
a) the port is meant to be the TM1 Server Port or the TM1 Rest API Port
b) the namespace is meant to be literally "LDAP" or whether it is meant to be the name of the CAM namespace

It is unclear as to whether this can only be used when you have already signed in to CAM eg via PAW or whether it is meant to re-direct you to the CAM login page if you are not signed in. It certainly doesn't seem to do the latter.

In our case CAM re-directs to OKTA which requires a 2FA code for any login. Therefore any initial login will need it to re-direct to collect this.

Describe what's not working the way you expect
Didn't get the expected result? Describe:
When I try I get an error saying that a CAM Passport has not been returned by TM1Server, however, my core problem is the lack of clear documentation.

Version

• TM1py [2.2]
• TM1 Server Version: [2.0.9]

Additional context

[MariusWirtz]

For namespace, you need to provide the CAM Namespace ID.
That value is case-sensitive and may differ from the CAM Namespace.

For port, you need to provide the HTTP port (HTTPPortNumber in tm1s.cfg)

TM1py cannot perform two-factor authentication. The recommendation would be to use a service account for TM1py with MFA disabled.

I hope this helps!