General

Within the General tab, you'll find the Realm details displayed.

Realm ID

This is a mandatory field and it shows the ID of the Realm.

Display Name

This refers to the name displayed on the ZTrust login page.

You can utilize this setting to customize the name according to your organization's requirements.

HTML Display Name

It refers to the name visible on the ZTrust login page.

You can use it to tailor the name and HTML design to meet your organization's specifications.

Frontend URL

This field specifies the front-end URL for the realm.

It should be used alongside the default hostname provider to replace the base URL for front-end requests specific to a particular realm.

Require SSL

When All Requests is selected from the dropdown, SSL is mandatory for all requests.

On selecting External Requests, SSL will be required for only External Requests

In case None is selected, it eliminates the requirement for SSL in any request.

ACR to LoA Mapping

Here, in the Login settings of a Realm, you can specify which Authentication Context Class Reference (ACR) value is mapped to which Level of Authentication (LoA).

The ACR values can vary, but the LoA must be numeric.

This mapping can also be configured at the client level if different values are needed than the Realm.

Adhering to realm mappings is generally recommended for consistency.

User Managed Access

It is a toggle button, when activated (toggled ON), users can manage their resources and permissions via the Account Management Console.

Disabling it (toggling OFF) restricts this capability.

Unmanaged Attributes

Unmanaged attributes are user attributes that are not specifically defined in the user profile configuration. They can be set to one of four options:

• Disabled: This default setting makes unmanaged attributes unavailable in any context, including registration, account management, and the administration console.

• Enabled: When activated, unmanaged attributes are fully recognized by the server and accessible across all contexts.

• Only administrators can view: These unmanaged attributes can only be accessed and managed through the administration console and API.

• Only administrators can write: These unmanaged attributes are read-only for users and can only be modified through the administration console and API.

Endpoints

This section encompasses all the configured endpoints.

In this case, ZTrust has its endpoints configured with OpenID and SAML protocols.

Save

Once you've entered the details, if you wish to incorporate the changes, simply click on the Save button.

Revert

If you prefer not to apply any changes with the provided information, click on the Revert button to discard the changes.