Configuring SAML SSO for BMC Remedy Force
These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and BMC Remedy Force.
Prerequisite
-
Login to ADSelfService Plus as an administrator.
- Navigate to Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select BMC Remedy Force from the applications displayed.
Note: You can also find BMC Remedy Force application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
-
Click IdP details in the top-right corner of the screen.
-
In the pop-up that appears, copy the Login URL and download the metadata file by clicking on the Download Metadata.
BMC Remedy Force (Service Provider) configuration steps
-
Login to BMC Remedy Force with an administrator’s credentials.
-
Navigate to Set up → Security Controls → Single sign-on settings
-
Click New from metadata file. You can upload the metadata file in the respective field. (Refer Step 4 of Prerequisite).
-
Rename the Entity ID as "https://saml.remedyforce.com".
-
Click Save.
-
When you enable SAML, a Salesforce Login URL will be displayed. Note down the URL. This will serve as the SAML Redirect URL while configuring BMC Remedy Force with ADSelfService Plus.
-
To map SSO Login to login page:
-
Navigate to Domain Management → Domain
-
Edit domain settings.
-
Enable SSO Configuration and Choose Login Method.
-
Add the domain created or registered domain.
Example:
https://purebmc.my.salesforce.cpm
ADSelfService Plus (Identity Provider) configuration steps
-
Now, switch to ADSelfService Plus’ BMC Remedy Force configuration page.
-
Enter the Application Name and Description.
-
In the Assign Policies field, select the policies for which SSO need to be enabled.
Note:ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
-
Select Enable Single Sign-On.
-
Enter the Domain Name of your BCM RemedyForce account. For example, if you use johndoe@bcmremedyforce.com to log in to BCM RemedyForce, then bcmremedyforce.com is the domain name.
-
In the SAML Redirect URL field, enter the URL you had copied in Step 6 of BMC Remedy Force configuration.
-
Choose the Name ID format that has to be sent in the SAML response. The Name ID format will specify the type of value sent in the SAML response for user identity verification.
-
Click Add Application
Note:
For BMC Remedy Force, both SP and IDP initiated flows are supported.