An Access Manager realm is a grouping of configuration information that you can associate with a user, a group of users, or a collection of protected resources. The configuration information can include, but is not limited to, the following:
A definition of one or more identity repositories, identifying a set of users, groups, and roles to whom the remaining realm configuration information applies.
An authentication configuration, identifying, for example, the location of the authentication repository, and the type of authentication required.
Policy information that will be used to determine which resources protected by Access Manager the subjects can access.
Responder information that allows applications to personalize the user experience, once the user has successfully authenticated and been given access.
The Access Manager framework aggregates realm properties within the proprietary Access Manager information tree. The following figure illustrates how realm data stored in an Access Manager information tree can be grouped by region and by company functions.