Enabling and disabling multi-tenancy support
You can configure BMC Remedy Mid Tier multi-tenancy support in the BMC Atrium Single Sign-On server. The BMC Atrium Single Sign-On server and agents provide the needed integration into the BMC Remedy Mid Tier so that the tenant configuration does not need any adjustments.
Multi-tenancy support for Mid Tier in Atrium Single Sign-On
For authenticating users of BMC Remedy Mid Tier in a multi-tenant environment, BMC Atrium Single Sign-On support for multi-tenancy is necessary to identify and redirect logon requests from various tenants to the appropriate realms. A realm is a virtual Identity Provider (IdP) that is used for authenticating tenants. Each realm is mapped to a web agent in the BMC Remedy Mid Tier. The web agent interacts with the mid tier and redirects the user to the appropriate tenant logon page. Deploying multiple realms for tenants is supported through the web agent and BMC Atrium Single Sign-On server. You can update the web agent without redeployment or scripts. You can deploy BMC Atrium Single Sign-On as a shared service that is implemented in High Availability (HA) mode.
The following diagram illustrates the deployment architecture.
The web agent maps the server host name (used by the user to access a protected application) to the full logon and logoff URLs. The logon and logoff URLs contain the information (for example, realm name and IdP ID) required to separate different tenants from each other.
To enable multi-tenancy support
Set the value of the
allow.multiple.realmsparameters to true in the web.xml file available at the following location:
(For Microsoft Windows) <installationDirectory>\tomcat\webapps\atriumsso\WEB-INF\
(For UNIX) <installationDirectory>/tomcat/webapps/atriumsso/WEB-INF/
- Clear the Enable check box on the FQDN Mapping tab from the BMC Atrium SSO Admin Console.
For more information about disabling FQDN mapping, see Agent Manager in multi realm environment.
After you enable multi-tenancy support, you can manage realms from the Realms panel that appears in the BMC Atrium Admin Console.
To disable multi-tenancy support
Set the value of the
allow.multiple.realms parameters in the web.xml file in the Atrium SSO installation directory to false.