An OpenEdge security domain identifies an authentication system used to validate user identities that authenticate in that domain, and also specifies common attributes associated with all successfully authenticated users in the domain. Each domain is configured in an OpenEdge RDBMS, and is specified by a domain name that is also part of the identity of every user who successfully authenticates to an OpenEdge database client. OpenEdge supports some authentication systems, including user-defined authentication systems configured to allow OpenEdge to authenticate a users identity. OpenEdge supports other authentication systems, including user-defined authentication systems configured for single sign-on (SSO) only, that require an ABL application to authenticate the users identity.

When a user provides their user ID to OpenEdge or an ABL application for user authentication, it must either implicitly or explicitly include the name of an OpenEdge security domain that tells OpenEdge or the application what authentication system to use. For more information on OpenEdge security domains and their configuration, see OpenEdge Getting Started: Identity Management.