Unable to use REST API with RSSO credentials , only local users.

Version 7
    Share This:

    This document contains official content from the BMC Software Knowledge Base. It is automatically updated when the knowledge article is modified.


    PRODUCT:

    Remedy Single Sign On


    COMPONENT:

    Remedy Single Sign On


    APPLIES TO:

    Any AR server version and any Remedy Single Sign On version.



    PROBLEM:

    In an AR Server with RSSO integrated, we are not able to get the AR-JWT token with RSSO credentials, you need to set a local account with password to get the token. This happens because the jetty server doesn't have any rsso agent that tells jetty to authenticate against RSSO, jetty goes directly to the ar server to authenticate. 

    In this case, customer wanted to use their RSSO credentials to use Rest Api calls to the ar server. 


    CAUSE:

    This happens because the jetty server doesn't have any rsso agent that tells jetty to authenticate against RSSO, jetty goes directly to the ar server to authenticate.


    SOLUTION:

    You can workaround this by using the rsso endpoints to get the rsso token then use the rsso token as authString to get the AR-JWT token then use that token to use Rest API calls to the AR server. 

    Note: For SAML and Kerberos authentication is not possible to get the RSSO token using rest api as per design of those authentications.

    1) Use a post request to the RSSO server to get the rsso token for certain user. Header is Content-Type application/x-www-form-urlencoded, body and url details are in the Image 1.

    2) Use a post request to the ar server to jetty using the rsso token as authString to get the AR-JWT token, header is same as above, details in Image 2. 

    3) Once you have the AR-JWT token you can use it to do whatever rest api call you want to do to the ar server. 


    Article Number:

    000157367


    Article Type:

    Solutions to a Product Problem



      Looking for additional information?    Search BMC Support  or  Browse Knowledge Articles