Managing local users
For any realm with Local authentication type, you can create users stored locally on the Remedy Single Sign-On server. Local users can access applications belonging to their realm. You can also add local groups, and then add users to these groups. Groups represent roles in your organization and can be used to control access to applications for which the single sign-on experience is enabled.
Configuring users for Local authentication
If you have a realm configured for Local authentication on the Remedy SSO, then you should perform the following tasks in Remedy SSO Admin Console:
- Create local users for a realm.
- (Optional) Create groups needed by your organization, and then add users to the appropriate groups.
Before you begin
Configure a realm for Local authentication.
To add a local user
- Log in to Remedy SSO Admin Console.
Click Local User > Users.
From the Realm list, select a realm.
Note
To authenticate a user in all realms available on your Remedy SSO server, add it to the default _empty_ realm. This is a technical realm, and it is not shown on the Realms page.
Users added to the _empty_ realm can access applications from any realm available on the Remedy SSO server.
Click Add User, and complete the following fields:
Field Description Login Name Enter the user's login name. The Login name is case insensitive.
Note: You cannot modify the login name after it is created.
User Name Enter the user's full name. Password Enter the user's password. The password length must be minimum 8 characters. There are no requirements for password complexity. Do not use space as the first or the last character of the password. Spaces are allowed between the first and the last character. Confirm Password Reenter the user's password. Description (Optional) Provide a description of the user. Enabled (Optional) Select this option to enable or disable a user in the BMC application. If you disable a user who is currently logged into a BMC application, ensure that you invalidate the old sessions or OAuth2 tokens (if any) of the user. For more information, see Invalidating and configuring end user sessions. Click Add
To change a local user's password
- Log in to Remedy SSO Admin Console.
Click Local User > Users.
From the Realm list, select a realm.
- Locate the user, and click Change Password in the Action column.
- Enter the new password, then enter the password again in the Confirm Password field.
- Click Change Password.
- Invalidate the old user sessions and OAuth2 tokens (if any).
To search for a local user
- Log in to Remedy SSO Admin Console.
Click Local User > Users.
In the Users tab search field enter the search criteria using the following format and then press Enter.
text=<searchText/*> AND enabled=<true/false/*>
The following table describes how to use the search criteria:
Search criteria | Description |
---|---|
text= | Use
You can pass a partial search value enclosed in You can use an asterisk as a wildcard to return all users. Examples:
|
enabled=<true/false/*> | Use You can use an asterisk as a wildcard to return users in any enabled state. Examples:
|
To add group (roles) to a realm
- Log in to Remedy SSO Admin Console.
- Click the Local User > Group (Roles).
- From the Realm list, select a realm.
Click Add Group (Role), and complete the following fields:
Field Description Group (Role) Name Enter the group (role) name.
Note:
You cannot modify the group (role) name after it is created.
Description Enter a description for the group (role) name. Click Save in the Action column.
To add users to or remove users from a role
- Log in to Remedy SSO Admin Console.
- Click the Local User > Group (Roles).
- From the Realm list, select a realm.
- Locate the group (role) and click Assign/Remove User(s) in the Action column.
- Use the appropriate procedure to assign or remove users to or from the group (role).
- To assign users to a group (role)
- In the Available Users column, select one or more users and click Assign to move the users to the Assigned users column.
- To assign all users in the list, select he top check box in the Available users column, and click Assign to move the users to the Assigned users column.
- Search for users in the Search field of the Available users column, select them, and click Assign to move them to the Assigned users column.
- To remove users from a group (role)
- In the Assigned User column, select one or more users and click Remove to move the users to the Available users column.
- To remove all users in the list, select the top check box in the Assigned users column, and click Remove move the users to the Available users column.
- Search for users in the Search field of the Assigned users column, select them, and click Remove to move them to the Available users column.
- To assign users to a group (role)
- Click Done.
Comments
Log in or register to comment.