Out of support This documentation supports the 8.0 version of BMC Atrium Single Sign-On, which is in "End of Version Support." However, the documentation is available for your convenience. You will not be able to leave comments.Click here to view the documentation for a supported version of Remedy Single Sign-On.

Configuring the SecurID module

To use SecurID Chain for user authentication, the module must first be configured with information about the RSA Authentication Manager server. This information is contained in the sdconf.rec file. After being configured, SecurID Chain is enabled for authentication use. There are two methods for configuring the SecurID module. This topic contains the following sections:

To configure BMC Atrium Single Sign-On to rely on a RSA SecurID server for user authentication

Copy the sdconf.rec file retrieved from the RSA SecurID server into the BMC Atrium Single Sign-On server at the following location:

<installationDirectory>/BMC Software/BMC Atrium SSO/tomcat/webapps/BMC Atrium SSO/WEB-INF/config/BMC Atrium SSO/auth/ace/data

To reconfigure the SecurID module to load the sdconf.rec file from another location

  1. Copy the sdconf.rec file retrieved from the RSA SecurID server to the BMC Atrium Single Sign-On server at the following location:
    <installationDirectory>/BMC Software/BMC Atrium SSO/tomcat/webapps/BMC Atrium SSO/WEB-INF/config/BMC Atrium SSO/auth/ace/data
  2. Navigate to the following location Access Control > BmcRealm link > Authentication.
  3. Click the Module Instances link.
  4. Click the SecurID link.
     The SecurID Realm Attributes configuration page displays where the you can modify the module attributes.
  5. In the ACE Server Configuration Path field, enter the full path for the new location of the sdconf.rec file.
     The configuration path is used to specify the location of the sdconf.rec file used to contact the RSA SecurID server.
  6. (Optional) In the Authentication Level field enter a new value (0 is the default).
     The authentication level can be used as an alternative mechanism of providing access (For more details regarding this feature, see the OpenSSO documentation).
  7. Click Save.
  8. (Optional) Edit the rsa_api.properties file for additional configuration. For more information, see Modifying the rsa_api.properties file.

Where to go from here

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*