Unsupported content

 

This version of the documentation is no longer supported. However, the documentation is available for your convenience. You will not be able to leave comments.

SRP authentication

This topic describes the use of Secure Remote Password (SRP) Authentication.

For SRP, the 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. Authentication Service authenticates client-tier users against a registry of authorized users. That registry is a user table in the database of the Application Server. Information in the user table is derived from the role-based access control (RBAC) utility of 
    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro.
. Note that the 
    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. 
user interface provides no capability to manage users. To add or delete users, change passwords, or specify security settings for users, you must use RBAC Manager in the BMC Server Automation Console or BMC Server Automation CLI (BLCLI).

SRP is default approach of 

    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. for authentication. For users who authenticate with SRP, session credentials are always refreshed as long as those users have RBAC user accounts that have not been disabled or deleted.

The Authentication Service used by 

    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. obtains its user information from the reports data warehouse. If you use RBAC to add, remove, or disable users, those user changes are not reflected in the reports data warehouse until the next time its data is updated. This delay means newly added users who are able to log on to other 
    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. applications might not be able to log on to 
    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro.
. Similarly, changes to SRP passwords do not take effect until the reports data warehouse is updated. Changes to user information for other authentication protocols are not subjected to the same delay because those changes are made to an external identity management system. However, note that no matter what authentication protocol is being used, 
    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. 
can never be aware of changes to role authorizations until the reports data warehouse is updated.

The Authentication Service used by 

    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. has a different account lockout implementation than the mechanism RBAC uses for SRP authentication. For SRP, administrators typically configure a threshold for failed logon attempts. After the threshold is reached, the SRP account is locked. The Authentication Service for 
    MultiExcerpt named 'Product_Name' was not found
The multiexcerpt named 'Product_Name' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. 
locks users according to policies set at individual 
    MultiExcerpt named 'BladeLogic' was not found
The multiexcerpt named 'BladeLogic' was not found. Please check the page name and MultiExcerpt name used in the MultiExcerpt Include macro. sites. However, updating the reports data warehouse overwrites all user status information, including the number of unsuccessful logon attempts or the time an account has been locked out. Consequently, overwriting can cause users to be reinstated unless that user is also locked out in the RBAC database.

Was this page helpful? Yes No Submitting... Thank you

Comments