Creating a single sign-on (SSO) authentication realm

An SSO authentication realm uses an external server for authentication.

  1. From the IBM® UrbanCode™ Release dashboard, click Manage Security > Manage Authentication Realms > Add New.
  2. In the Name field, enter a name for the authentication realm.
  3. From the Authorization list, select the authorization realm the new authentication realm uses.
  4. From the Type list, select Single Sign-On.
  5. If you want to enable the authentication realm, select Enable.
    Authentication realms are enabled by default. Realms that are not enabled are not checked when users attempt to log on. You can enable a realm at any time.
  6. In the User Header Name field, enter the header name that contains the list of valid user names.
  7. In the Email Header Name field, enter the header name that contains users email addresses.
  8. In the Logout URL field, enter the URL where users are redirected after they log out of IBM UrbanCode Release.
  9. Click Save.
When a user logs on for the first time, their credentials are checked against the SSO authentication realms. If the user is found, a user ID is created that contains the user name and email address. The user is placed in the groups that are defined by the authorization realm that is used by the authentication realm. If the groups do not exist in IBM UrbanCode Release, they are created and the user is placed in them.