Accessing the interface
This topic describes authentication methods and how to access
.- To access BMC BladeLogic Decision Support for Server Automation
- To change the default timeout period for BMC BladeLogic Decision Support for Server Automation
When accessing
, you can use one of the following authentication methods:- SRP authentication and encryption based on the Transport Layer Security (TLS) and self-signed or Certificate Authority (CA)-issued certificates
- Domain authentication, for which users authenticate against Microsoft Active Directory/Kerberos-based authentication services
- LDAP authentication
- SecurID authentication, a two-factor authentication mechanism requiring PIN numbers and SecurID tokens of users
Domain authentication users must provide a fully-qualified user name, such as sally@SUB1.QA.COMPANY.COM, unless a user is defined as a member of the default realm. For example, if SUB1.QA.COMPANY.COM is the default realm, the user sally can simply enter a user name of sally. For information about how to set up the default realm for domain authentication, see Domain-authentication. Note that when entering a fully-qualified user name, the domain name must always be capitalized. Also, ensure that the role that you plan to use for logging on to
was transferred to the reports data warehouse using ETL (see RBAC-data-updates).Users with roles that include any of the report-related authorizations can log on to
. For more information about report-related authorizations, see Roles-and-access-to-functions-and-features.To access BMC BladeLogic Decision Support for Server Automation
- Ensure that the Authentication Server to which connects is running.
The Authentication Server authenticates you when you log on to . For more information about the authentication mechanisms, see Authentication in BMC Server Automation documentation. - To view the home page for on Microsoft Windows or UNIX systems, enter one of the following addresses into a web browser:
- If is configured to use secure communication over SSL, enter the following address:
https://<reportsServer>:<portNumber>/BMCSAReports If
is not configured to use secure communication over SSL, enter the following address:
http://<reportsServer>:<portNumber>/BMCSAReports
where <reportsServer> is the server that hosts and portNumber is the HTTPS or HTTP port specified during installation.
If the HTTPS port is 443 or the HTTP port is 80, it can be omitted from the URL. opens in a browser window and displays a logon dialog box.
- If is configured to use secure communication over SSL, enter the following address:
- Enter your user name and password, and then select the site name and authentication type. Some authentication types require additional information, as follows:
- LDAP users logging on for the first time must enter a distinguished name template. Select the authentication type and click OK. A new logon dialog box opens, in which you must provide your user name and password, site name, authentication type, and the distinguished name template. Once you enter a distinguished name template, that information remains associated with your user name. You do not have to enter a distinguished name template during future log on attempts. For more information about distinguished name templates, see LDAP-authentication.
- AD/Kerberos users must provide a domain name. Select the authentication type and click OK. A new logon dialog box opens, in which you must provide your user name and password, site name, authentication type, and the domain name.
Click OK. If your user name is associated with multiple roles,
displays the Select Role window. If you are not associated with multiple roles, the default tab is displayed.If the Select Role window appears, select the role you want to use and click OK. The default tab on the
main window opens.
To change the default timeout period for BMC BladeLogic Decision Support for Server Automation
- On the reports server, navigate to the following directory: REPORTS_HOME/portal/configuration.
- Open the cogstartup.xml file in a text editor.
- Search for the inactivityTimeout parameter and change its value according to your requirements.