This documentation supports the 20.08 version of Remedy Single Sign-On, which is available only to BMC Helix subscribers (SaaS).To view an earlier version, select the version from the Product version menu.

Remedy Single Sign-On 20.08

Remedy Single Sign-On 20.08

With Remedy Single Sign-On, your end users can present credentials for authentication only once in a multi software environment. Administrators enable single sign-on experience for applications, configure authentication methods, and review audit records.


Release notes and notices Updated 22 Sep 2020

Learn what’s new or changed for Remedy Single Sign-On version 20.08 including new features, urgent issues, documentation updates, and fixes or patches.

Tip

To stay informed of changes to this space, place a watch on this page.

Related topics

Known-and-corrected-issues

Support-information

The following updates have been added since the release of the space:

Date

Title

Summary

September 23, 2020

Remedy SSO 20.08 introduces the following features:

    • Password complexity requirements for Remedy SSO local administrators
    • Signing hash algorithm for SAML realm
    • Logging audit records of end users
    • Retention policy for audit logs
    • OpenID Connect logout in Remedy SSO
    • Custom UserID to match the login ID
    • Interactive self-help enabled by default



Setting up Remedy SSO administrator accounts

Manage user accounts who will have access to Remedy SSO.

Configuring the Remedy SSO server

Configure the maximum session time for end users, enable the account lockout for administrators and audit records.

Setting up end user authentication

Configure authentication of end users through a specified authentication method.

Administering

Set up administrator accounts, activate tenants, and secure sensitive data.

Integrating

Set up integrations with other BMC products.

Troubleshooting

Resolve common issues or errors, review logs, or contact BMC Customer Support.
Product trials Product trials
CommunitiesCommunities
Knowledge BaseKnowledge Base
VideosVideos
PDFs and videos

This topic describes and links to PDFs, videos and other documents that support this product release. If the ready-made PDFs of this space do not satisfy your requirements, you can export a custom PDF.

Info

When you export a custom PDF, you can select the topics to include. For information about how you can export a custom PDF from this space, see Exporting-to-PDF-and-other-formats.

Ready-made PDFs of this space

You must log in or register to view this page

Videos

The following table lists topics that contain videos that supplement or replace the text-based documentation.

Frequently asked questions

Here are some answers to the most frequently asked questions about the Remedy Single Sign-On product.

Related topics

Troubleshooting

Frequently asked questions about Remedy Single Sign-On


An end user has modified the password, however the end user is still able to access BMC Remedy SSO applications. Has the password been updated?

Identity providers do not automatically notify Remedy SSO about the password change. Hence, an end user's Remedy SSO session remains active until it expires, and is not revoked after password change on IdP. To force the logoff, and receive the request for entering a new password, an end user needs to ask a Remedy SSO administrator to delete all active sessions/OAuth of this end user.

How can I change my Remedy SSO administrator password?

You can change your password in the Remedy SSO Admin Console, in the Admin User Management. To change your password, select your user account name, and then edit your password as required. See Setting-up-Remedy-SSO-administrator-accounts for more details about how to change the password of an administrator.

I'd like to obtain Remedy SSO server version. How can I get that?

You can obtain the Remedy SSO server version information through the <RSSO Server>/config/server-status URL. You must be authenticated as a Remedy SSO administrator before that.

Is there a way to automatically retrieve OAuth metadata from the Remedy SSO server?

Yes, you can do this.

If the OpenID Issuer URL is configured for the OAuth 2.0, developers of third-party applications can retrieve the OAuth metadata from the Remedy SSO server by using the following autodiscovery URL: RSSO_host:RSSO_port/rsso/.well-known/openid-configuration.

Running this request in the browser window returns details about the OpenID Connect provider's configuration, including the URIs of the authorization, token, revocation, userinfo, and public-keys endpoints.

Does Remedy SSO support multi-factor authentication?

Multi-factor authentication is not implemented on the Remedy SSO side. Remedy SSO only supports scenarios where the Identity Provider that is configured in Remedy SSO for authentication has configured multi-factor authentication.

For example, if your application is integrated with the Remedy SSO server that is configured to use the SAML protocol to authenticate users accessing an application, then for the end users to pass the authentication flow, multi-factor authentication must be enabled and configured on the SAML Identity Provider.

Is Remedy SSO 20.08 compatible with earlier versions of integrated BMC Remedy products?

You can check whether an earlier version of your product is compatible with Remedy SSO 20.08 on the BMC Product Availability and Compatibility page.

Does Remedy SSO provide options for auditing end-user actions?

Yes.

You can enable audit records for end-user events in the Remedy SSO Admin Console > General > Advanced > select the End-user events check box.

 

Tip: For faster searching, add an asterisk to the end of your partial query. Example: cert*