Creating SSO authentication realms for the blueprint designer
Create an authentication realm on the blueprint design server to interact with the single sign-on server.
Log in to the blueprint designer as a user with the following System
- Configure Security
- Manage Users & Groups
- Click .
- Click Create New Realm.
- Specify a name and description for the new authentication realm.
- In the Allowed Login Attempts list,
specify the number of times that a user can attempt to log in before
the account is locked.A blank value means that an unlimited number of attempts are allowed.
- In the Type list, select Single Sign-On.
In the Single Sign-On section, specify the properties in the following
Table 1. Properties for users in the Single Sign-On authentication realms Field Description User Header Name The header that contains the username. Email Header Name The header that contains the user's email address. Logout URL The URL where the users are redirected after they log out of IBM® UrbanCode® Deploy. Full Name Header Name The header that contains the user's full name.
In the Group section, specify the properties in the following
Table 2. Properties for groups in the Single Sign-On authentication realms Field Description Groups Header The header that contains the list of groups to which the user belongs. Separate headers with the character indicated in the Groups Delimiter field. Groups Delimiter The string that delimits values that are found in the groups header. Regular expression special characters must be escaped with the
Groups Regex The regular expression that is used to find the groups in the header value. If you specify a capturing group with parentheses, the first matching regex value per delimited string is captured. If no capturing group is specified, then the whole delimited string is captured.
- Click Save.
- Add the users to the realm and then add them to teams. You must add users to teams to give the users permission to work with blueprints.
- Configure how the users authenticate to the cloud. See Setting up access to clouds in the blueprint designer.