×
 
 
  •  
$helper.renderConfluenceMacro('{bmc-global-announcement:$space.key}')

 

This documentation supports the 20.08 version of Remedy Single Sign-On, which is available only to BMC Helix subscribers (SaaS).

To view an earlier version, select the version from the Product version menu.
Remedy Single Sign-On 20.08 Getting started

Quick start for SaaS administrators

As a SaaS administrator, you can create and fully manage other SaaS administrators, tenant administrators, and tenants in Remedy Single Sign-On. Review the following concepts, and follow the links to learn more about the capabilities of the SaaS administrator in Remedy SSO.

Basic concepts for SaaS administrators

  • Tenant—A configuration instance that has its own share of data and functionality. Tenants are fully isolated from each other, but they are saved on the same Remedy SSO server. For example, a BMC customer, company A that stores account data, has a maximum session time of 3 minutes to mitigate session-based attacks. Another BMC customer, company B that owns a service platform, has an increased maximum session time of 1 hour to enable efficient customer experience.
  • Tenant administrator—A user who has full rights to manage local users for realms in their tenant.
  • Authentication method—A flow that is used to authenticate end users. An authentication method affects the log-in and log-out experience. 

Essential tasks as a SaaS administrator

The following diagram illustrates the basic actions that a SaaS administrator can perform in Remedy SSO:

SaaS_administrator's_tasks

To learn more about each task, see the following sections: 

Create SaaS and tenant administrators

Create SaaS and tenant administrators by navigating to the Admin User tab in the Remedy SSO Admin Console.

For more information, see Setting up Remedy SSO administrator accounts.

Configure authentication for end users

You can configure the following authentication methods for a realm on the Remedy SSO server:

Authentication_types

For more information, see Configuring authentication.

Configure the Remedy SSO server

Configure the Remedy SSO server settings such as log level, maximum session time for end users and administrators, lockout functionality, or retention policy. For example, you can disable interactive self-help for administrators.

For more information, see Configuring the Remedy SSO server.

Add and manage local users

Add and search for local users, change local user's password, add groups (roles) to a realm, or add users to or remove users from a role.

For more information, see Managing local users.

Review audit records

By default, the Audit tab shows all logged administrator, end-user actions, or actions of both for the last day. You can filter audit data by a certain date. 

For more information, see Reviewing audit records.

Grant administrator privileges for external LDAP users

Internal authentication is configured as the default method for logging in to the Remedy SSO Admin Console. Only administrators created on the Remedy SSO server by default can log in to the Remedy SSO Admin Console. You can use any external LDAP as an identity provider for Remedy SSO administrator accounts. 

For more information, see Configuring authentication for Remedy SSO administrators.

Additional tasks for SaaS administrators

After you have mastered the SaaS administration tasks, explore the following features:

Was this page helpful? Yes No Submitting... Thank you
Last modified by Priya Shetye on Jan 05, 2024
getting_started

Comments

Log in or register to comment.

Orientation
Key concepts
© Copyright 2005-2007, 2009-2020 BMC Software, Inc.
© Copyright 2005-2007, 2009-2020 BladeLogic, Inc.
Legal notices

Powered by Atlassian Confluence and Scroll Viewport

© Copyright 2005-2024 BMC Software, Inc. Use of this site signifies your acceptance of BMC’s Terms of Use . BMC, the BMC logo, and other BMC marks are assets of BMC Software, Inc. These trademarks are registered and may be registered in the U.S. and in other countries.