The IAM Loginapp must be placed behind an Airlock Gateway or Microgateway. It is configured as a back-end application that can authenticate sessions.
See also Separation of IAM modules.
The following sections describe in detail how Airlock IAM and Airlock Gateway have to be configured.