Integrating Remedy SSO with BMC Digital Workplace
This topic describes how to configure the integration between Remedy Single Sign-On and BMC Digital Workplace.
Based on your organization’s requirement, you can configure any of the authentication methods to authenticate end users for various BMC applications.
As an administrator you can integrate Remedy SSO with BMC Digital Workplace. After the integration, you can configure the required protocol for authentication. BMC does not support the Kerberos authentication for mobile apps, but you can configure the Kerberos authentication for web apps.
Remedy Single Sign-On authentication applies to both the universal client and to mobile applications. When a user logs in to on a mobile device, the user is prompted to enter the host name and port. If the server has SSO enabled, the mobile client opens a browser to the SSO login page. The SSO server sets the SSO cookies after authentication on to the device browser. When the user relaunches the application, if the cookies are not expired, the mobile client displays the application. If the cookies are expired, the user is shown the login page again for authentication.
Before you begin
- Install Remedy Single Sign-On
- Configure a realm for BMC Digital Workplace. Remedy SSO server and BMC Digital Workplace server require the same domain. Otherwise, deploying the Remedy Single Sign-On agent will not work.
- Create the rsso-agent.properties file.
To integrate Remedy SSO with BMC Digital Workplace
For clusters, complete the following procedure for each BMC Digital Workplace server.
- Start the DWPTomcat service.
- Make sure Single Sign-On integration is enabled on BMC Digital Workplace database table.
To enable the integration, perform either of the followings steps:
Go to the BMC Digital Workplace DWP_System.TENANT database table, and validate if the value of the SAML_AUTHENTICATION is set to 1.
To update the SAML_AUTHENTICATION, run the following query:
UPDATE DWP_System.TENANT SET SAML_AUTHENTICATION = 1
Run the following command using Java 1.8 or later:
java -jar <DigitalWorkplace_path>/tenant-config/tenant-config-<DigitalWorkplace_version>-jar-with-dependencies.jar updateTenant -server http://<DigitalWorkplaceServer>:<PortNumber>/dwp -username <DigitalWorkplace_Super_Admin_username> -password <DigitalWorkplace_Super_Admin_password> -tenantName <TenantName> -hostname localhost -samlAuthentication true
Restart the Tomcat service.