Realm settings
Realms are administrative units that group configurations and identities together so that you can manage different sets of identities and applications within the same PingOne Advanced Identity Cloud tenant.
Each realm is fully self-contained and operates independently of other realms within a tenant; the identities and applications in one realm can’t access those in another realm.
A typical example of realm management is when a company divides its identities into two realms: one for employees and one for customers, each having a distinct set of identities and registered applications.
Manage realm settings
-
In the Advanced Identity Cloud admin UI (upper left), open the Realm menu.
-
Go to Realm Settings > Details.
-
On the Details page:
-
The Status bar indicates whether the realm is Active or Inactive.
-
To take the realm out of service, click Deactivate.
When a realm is deactivated, users and devices contained in the realm will not be able to access its applications. Identity and app information is still registered to your identity platform. -
Name: The realm name is non-configurable.
-
(Optional) DNS Aliases: Alternative display names for the realm’s URL.
-
Use Client-based Sessions: Enable this option to allow signing and encryption of the JWT in the global session service.
-
-
To configure a custom domain name, click Custom Domains. Learn more in Custom domains.
When you’re satisfied with your changes, click Save.
Override realm authentication attributes
It’s useful to override realm authentication attributes when you want to adjust the core authentication properties of a realm. For example, you may want to extend the time limit for responding to an authentication verification email.
Under Native Consoles > Access Management, go to Authentication > Settings.
For detailed property information, learn more in Core authentication attributes.