This topic has 2 replies, 2 voices, and was last updated 6 years, 3 months ago by Fernando A. Barbeiro Campos.

  • Author
  • #10301

    Hi guys, here we go again. :)

    I have defined, besides Top Level Realm, another two, lets say bank_employees and bank_clients – as image bellow.

    Given this, I’ve also created users under each one of this realms, but when I navigate until the Subjects from a specific Realm, all users from the other Realm are there, visible to me:
    Users visible to both realms

    Considering that I’m logged with AMAdmin, maybe it is not a problem, however, when I’m trying to do a Login with a specific user from a Realm bank_clients, it also accepted to be logged whether I pass bank_employees, for instance, to the Oauth 2 authorize endpoint.

    Login with Crossed Realm

    Please guys, am I missing something or is there misconceptions from my part?


    Hi Fernando,

    Can you please check the data store details in both the realms . if the data store is same you will see all the users from data store in both the realms . OpenAM loads the subject details from corresponding data store .

    if you have different data store i hope your problem will be resolved .



    Hi Bhargava, you are right, I’m sharing the embedded default OpenDJ datastore. I will create separate ones and later I share the experience (or even any other doubts). Thank you so much for collaborating.

Viewing 3 posts - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?