Create an authentication realm on the blueprint design server to interact with the single
sign-on server.
-
Log in to the blueprint designer as a user with the following System
permissions:
- Configure Security
- Manage Users & Groups
- Click .
- Click Create New Realm.
- Specify a name and description for
the new authentication realm.
- In the Allowed Login Attempts list,
specify the number of times that a user can attempt to log in before
the account is locked.
A blank value means that an unlimited
number of attempts are allowed.
-
In the Type list, select Single Sign-On.
-
In the Single Sign-On section, specify the properties in the following
table.
Table 1. Properties for users in the Single Sign-On authentication realms
| Field |
Description |
| User Header Name |
The header that contains the username. |
| Email Header Name |
The header that contains the user's email address. |
| Logout URL |
The URL where the users are redirected after they log out of IBM® UrbanCode® Deploy. |
| Full Name Header Name |
The header that contains the user's full name. |
-
In the Group section, specify the properties in the following
table.
Table 2. Properties for groups in the Single Sign-On authentication realms
| Field |
Description |
| Groups Header |
The header that contains the list of groups to which the user belongs.
Separate headers with the character indicated in the Groups Delimiter
field. |
| Groups Delimiter |
The string that delimits values that are found in the groups header. Regular
expression special characters must be escaped with the \ character. |
| Groups Regex |
The regular expression that is used to find the groups in the header value. If
you specify a capturing group with parentheses, the first matching regex value per delimited string
is captured. If no capturing group is specified, then the whole delimited string is
captured. |
-
Click Save.