Working with realms
If you are using Local User Authentication with Remedy Single Sign-On (Remedy SSO or RSSO), you use a realm for that authentication.
If you install the embedded Remedy SSO during the BMC Atrium Orchestrator Platform installation, a realm named BAOLocal is automatically created during the installation of the repository, CDP, and HA-CDP if it is installed.
If you are using an external version of Remedy SSO, you need to create the realm in Remedy SSO.
You configure realms in the Remedy SSO Administrator console. For more information about managing realms in the console and Remedy SSO authentication, refer to the following topics:
The following video (2:17) demonstrates how to create the Local User Authentication realm.
To create the Local User Authentication realm in the console
- From the console, access the Realm tab.
- Click Add Realm.
- Click General and add realm details, including a Realm ID (such as a name). Realm parameters are described in .
- Click Authentication.
- From the Authentication Type list, choose Local.
- (optional) Select Enable LDAP authentication for local user to use this feature.
- Click Add.
If you are using Atrium Orchestrator version 7.9.01 or later, with the embedded Remedy SSO authentication you can use LDAP and local user authentication. You do not need a second realm. You can configure a realm to use two authentication mechanisms using the Enable Chaining Mode button. When chaining the two authentication mechanisms, specify which authentication mechanism to use first. The LDAP authentication is not replicated (over the fail-safe ESB) to other peer's Remedy SSO instance. Local user accounts, roles, and role mappings are replicated.