Solution administrators of service provider organizations can set up separate realms for their subscribers (tenants) in BMC Atrium Single Sign-On. Solution administrators for enterprise environments can also take advantage of BMC Atrium Single Sign-On's multenancy support by setting up separate tenants for each department.
Each tenant inherits the authentication properties of the user groups, roles, and authorization profiles of the BmcRealm.
You must have installed BMC Atrium Single Sign-On.
This topic provides an overview of the steps required to set up multi-tenancy. For more detailed information, see the following topics in the BMC Atrium Single Sign-On documentation:
Installing BMC Atrium Single Sign-On
To enable multi-tenancy in BMC Atrium Single Sign-On, you must change the value of the allow.tenant.admin
and skip.tenant.domain.check
parameters to true
.
true
, and save the file: <param-name>allow.tenant.admin</param-name>
<param-value>
true
</param-value>
<param-name>skip.tenant.domain.check</param-name>
<param-value>
true
</param-value>
Using the amAdmin user credentials, log in to the BMC Atrium SSO console.
Access the Realm section, and select Add Realm.
Enter the name to assign to the tenant realm and its domain, and click Save.
This new user can now log into the TrueSight Operations Management console. During login, the user enters userName@domain for the user name.
To set up new authorization profiles, user groups, or roles for tenant users, see Managing users and access control.
Managing users and user groups
Access control for administrators of service providers
Setting up LDAP or Active Directory users in BMC Atrium Single Sign-On