One instance of IBM Tivoli Directory Server can have multiple data naming contexts. Because each data naming context is mapped to a Content Platform Engine realm, one IBM Tivoli Directory Server can be mapped to multiple Content Platform Engine realms.
For each realm, you need to create an application server authentication provider and a DirectoryConfigurationIBM object, so that there is a one-to-one relationship between Realm object and authentication provider, and also a one-to-one relationship between Realm object and DirectoryConfigurationIBM object.
For each authentication provider, FileNet® P8 extracts the realm name from the specified User Base DN value by comparing it with each data naming context. For example, if this authentication provider's user base DN is “ou=people,o=isp”, and if there are two data naming contexts: “o=isp” and “dc=filenet,dc=com”, then you know the realm name for this authentication provider is “o=isp”.