×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

 

This documentation supports the 20.08 version of Remedy Single Sign-On, which is available only to BMC Helix subscribers (SaaS).

To view an earlier version, select the version from the Product version menu.
Remedy Single Sign-On 20.08 ... Getting started Single sign-on authentication methods

OpenID Connect authentication

Remedy Single Sign-On provides the OpenID Connect authentication method which is built on top of the OAuth 2.0 protocol. Clients use the OpenID Connect authentication to check the identity of users. The identification is based on the authentication done at the authorization server.

Related topics

OAuth 2.0 authorization

Configuring OpenID Connect authentication

OpenID Connect authentication flow

OpenID Connect authentication involves the following processes:

  1. The registered client (Remedy SSO) sends the authorization request to the OpenID Connect provider.
  2. The OpenID Connect provider authenticates the end user and redirects the authorization code to Remedy SSO.
  3. Remedy SSO sends a request with the authorization code to get the access token from the OpenID Connect provider.
  4. Remedy SSO forwards the access token to the OpenID Connect provider and requests for information about the end user.
  5. The OpenID Connect provider forwards information about the end user to Remedy SSO.
  6. Remedy SSO creates a user session.
Was this page helpful? Yes No Submitting... Thank you
Last modified by Olha Horbachuk on Aug 07, 2020
authentication

Comments

Log in or register to comment.

Preauthentication
OAuth 2.0 authorization
© Copyright 2005-2007, 2009-2020 BMC Software, Inc.
© Copyright 2005-2007, 2009-2020 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.