This documentation supports the 9.0 version of Remedy Action Request System.

To view the latest version, select the version from the Product version menu.

Managing realms in BMC Remedy Single Sign-On

BMC Remedy Single Sign-On allows you to edit existing realm details and also add a new realm.

To edit realm details:

  1. Log on to the BMC Remedy Single Sign-On Admin console.
  2. Click Realm.
  3. Click the pencil icon listed against a realm to edit it.

To add a new realm:

  1. In the Realm window, click Add Realm.

  2. In the General tab, enter the following details.


    Realm ID

    Enter the realm ID

    Realm Domain(s)

    Enter the Realm Domains (as list of the values, separated by commas).

    Final Logout URL

    Enter the final logout URL.

    This is the URL to which the user will be redirected to after user is logged out from BMC Remedy Single Sign-On.

  3. In the Authentication tab, select the SAML as the Authentication type.

  4. Click Import against the Identity Provider to import the details or enter the following details.


    IdP Entity ID

    Enter identity provider entity ID.

    Login URL

    Enter identify provider login URL.


    Sign Request

    Specify whether SAML request will be signed.

    Sign Response

    Specify whether SAML response will be signed.

    Compress Request

    Specify whether SAML request will be compressed.
    NONE: No transformation will be effected.
    TO_UPPER_CASE: User id will be transformed to all upper case.
    TO_LOWER_CASE: User id will be transformed to all lower case.
    REMOVE_BMC_DOMAIN: BMC specific transformation; email domain will be removed from user id if it relates to BMC.

    REMOVE_EMAIL_DOMAIN: email domain will be removed from user id.

    NameID format 

    Defines the name identifier formats supported by the service provider. Name identifiers are a way for providers to communicate with each other regarding a user.

    The Name ID format list is an ordered list, the first Name ID has the highest priority in determining the Name ID format to use. If the user does not specify a Name ID to use when initiating single sign-on, the first one in this list is chosen and supported by the remote Identity Provider.

    A persistent identifier is saved to a particular user's data store entry as the value of two attributes. A transient identifier is temporary and no data will be written to the user's persistent data store.


    For linking user accounts from SP and IdP (Remote Identity Provider) together, after logging in, the persistent nameID format must be on the top of the list.


    Auth Context Compare

    exact, minimum, maximum, better

    Select the default context that you are planning to use for authentication and what level of comparison do you want for authentication. The options are: exact, minimum, maximum, better, none.


    Auth Context

    This attribute maps the SAMLv2-defined authentication context classes to the authentication level set for the user session for the service provider.

  5. Click View Metadata against Service Provider. A new page opens, displaying the metadata XML for the configured SP.
  6. In the Authentication tab, select AR as the Authentication type.
  7. Enter the following details.



    Enter the Host Name of the BMC Remedy AR System server.


    Enter the port number of the BMC Remedy AR System server.

  8. Click the Branding tab.
  9. Enter the following details:


    Customize Login Page

    Select this check box if you want to customize your login page. Click Preview to view the page.

    Window Title

    Enter a title for the browser window.

    Product Name

    Enter a name for the product.

    Company Logo

    Click the pencil icon to insert a company logo.

    Background Image

    Click the pencil icon to insert a background image.

  10. Click Add to add the realm details.

Related topics

Was this page helpful? Yes No Submitting... Thank you