Configuring settings to instantly terminate all active sessions for maximum security
Scenario
BMC Helix Portal user Jack logs in to BMC Helix Portal to navigate through the BMC Helix services to which he subscribed. Jack opens BMC Helix Dashboards to view the status of the new laptop and desktop requests during the financial quarter. He finishes the overview and logs out of BMC Helix Dashboards. With the configured immediate logout, he is logged out of BMC Helix Portal and all BMC Helix services at once.
Workflow
The following table describes the tasks involved in the process of setting the immediate logout of all applications:
| Task | Product component | Role | Action | Reference |
|---|---|---|---|---|
| 1 | BMC Helix SSO server | BMC Helix SSO administrator | Configure the BMC Helix SSO server with the Redis server by using the Remedy SSO Admin Console. Set up the redis-uri, redis-password, and redis-channel properties. | Configuring BMC Helix SSO to support immediate logout from all applications |
| 2 | BMC Helix SSO agent or Auth Proxy (depending on the Redis service availability) | BMC Helix SSO administrator (for BMC Helix SSO agent) or the internal Ops team (for Auth Proxy) | Ensure that all the Redis properties are the same in the Redis server settings of the Remedy SSO Admin Console, the rsso-agent.properties file of the BMC Helix SSO agent, and the external.conf file of Auth Proxy. | Configuring the BMC Helix SSO agent or Configuring Auth Proxy for deployment with BMC Helix SSO |
Results
By using the feature, Jack is able to securely log out of all BMC Helix services in one action after completing his session in BMC Helix Dashboards. This immediate logout ensures that his authenticated session is terminated across the entire BMC Helix Portal, eliminating any residual access or cached token validations. As a result, Jack benefits from enhanced security, while the administrator gains greater control over session management and reduces the risk of unauthorized access.