Skip to Content

Warning
Helix documentation is moving from docs.bmc.com to docs.helixops.ai

Key pages will redirect to the new domain on May 26, 2026. However, some legacy documentation links will not be redirected. 

In-product help links might not work after migration as we transition and update them within the product.

For any queries, reach out to IX-Support@helixops.ai.

Information
This documentation supports the 22.2 version of BMC Helix Single Sign-On, which is available only to BMC Helix customers (SaaS). To view an earlier version, select the version from the Product version menu.

Setting up end user authentication

As a SaaS administrator, you can configure BMC Helix SSO to authenticate end users by using the following authentication methods:

  • AR
  • Certificate-based
  • LDAP
  • Local
  • Kerberos
  • OpenID Connect
  • Pre-authentication
  • SAML 2.0

Related blogs in BMC Communities

Securing Tomcat Server For BMC Helix Single Sign-On

The following table describes the end-to-end tasks that you need to perform to configure any authentication in BMC Helix SSO.

Task

Task description

Reference

1

If you have BMC Helix SSO in multitenant mode, if required, create a tenant, and switch to a BMC Helix SSO tenant in which you would like to configure authentication.

If you have a single default tenant, skip this task.

2

Configure the BMC Helix SSO server settings after you complete the installation of BMC Helix SSO application.

3

Add and configure a realm for which you want to configure an authentication method.


 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*

BMC Helix Single Sign-On 22.2