지금 지원 담당자와 채팅
지원 담당자와 채팅

Starling Connect Hosted - One Identity Manager Administration Guide

About this guide One Identity Starling Connect overview One Identity Starling Supported cloud applications Working with connectors Connector versions Salesforce Facebook Workplace SAP Cloud Platform JIRA Server RSA Archer SuccessFactors AWS IAM ServiceNow Dropbox Crowd Atlassian JIRA Confluence Trello Box Pipedrive SuccessFactors HR NutShell Insightly Egnyte SugarCRM Oracle IDCS Statuspage Zendesk Sell Workbooks DocuSign Citrix ShareFile Zendesk Azure AD Google Workspace Concur Tableau GoToMeeting Coupa AWS Cognito Okta DataDog Hideez Opsgenie Informatica Cloud Services AppDynamics Marketo Workday HR OneLogin PingOne Aha! SAP Litmos HackerRank Slack ActiveCampaign Webex Apigee Databricks Hive PagerDuty Dayforce Smartsheet Pingboard SAP Cloud for Customer Azure Infrastructure Oracle Fusion Cloud Majesco LuccaHR OpenText JFrog Artifactory xMatters Discourse Testrail ChipSoft PingOne Platform Azure DevOps UKG PRO Atlassian Cloud Appendix: Creating a service account in Google Workspace Appendix: Setting a trial account on Salesforce Registering the application, providing necessary permissions, retrieving Client Id and Client Secret from the Azure AD tenant Generating a private key for service account in GoToMeeting Configuring AWS IAM connector to support entitlements for User and Group Configuring Box connector to support additional email IDs for users One Identity Manager E2E integration needs for Hideez connector Configuring custom attributes for ServiceNow v.1.0 Configuring custom attributes for Coupa v.1.0 Configuring custom attributes in connectors Disabling attributes Configuring a connector that uses the consent feature Synchronization and integration of Roles object type with One Identity Manager Synchronization and integration of Workspaces object type with One Identity Manager Synchronization and integration of Products object type with One Identity Manager User centric membership Creating multi-valued custom fields in One Identity Manager Synchronization and assignment of PermissionSets to Users with One Identity Manager Connectors that support password attribute in User object Connectors that do not support special characters in the object ID Creating an app for using SCIM on Slack Enterprise Grid Organization Creating a Webex integration application, providing necessary scopes, retrieving Client Id and Client Secret Retrieving the API key from Facebook Workplace Outbound IP addresses Values for customer-specific configuration parameters in Workday HR connector Initiate an OAuth connection to SuccessFactors Creating custom editable/upsertable attributes in Successfactors employee central Custom Foundation Objects in Successfactors HR connector Configuring additional datetime offset in connectors How to Create custom attribute for Users in SuccessFactors portal SAP Cloud for Customer - Steps to add custom fields at One Identity Manager attributes Creating a Service Principal for the Azure Infrastructure Connector Workday permissions needed to integrate via the Starling Connector Configuring integration application in DocuSign Creating integration Connect Client in Coupa Retrieving Azure DevOps Personal Access Token (PAT) Setup integration system and field override service in Workday Retrieving Atlassian Cloud API Key and Directory ID

Mandatory fields

The Hideez connector allows you to connect Hideez with One Identity Starling enabling you to take advantage of the features and products available with Starling Connect that complement and enhance Hideez's wireless security key for passwordless user authentication and centralized password management.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

AccessProfile

Table 214: Supported operations for AccessProfile

Operation

VERB

Create AccessProfile POST
Update AccessProfile PUT
Delete AccessProfile DELETE
Get AccessProfile GET
Get All AccessProfiles GET

Companies

Table 215: Supported operations for Companies

Operation

VERB

Create Company POST
Update Company PUT
Delete Company DELETE
Get Company GET
Get All Companies GET

Departments

Table 216: Supported operations for Departments

Operation

VERB

Create Department POST
Update Department PUT
Delete Department DELETE
Get Department GET
Get All Departments GET

Devices

Table 217: Supported operations for Devices

Operation

VERB

Update Devices PUT
Get Devices GET
Get All Devices GET

Positions

Table 218: Supported operations for Positions

Operation

VERB

Create Positions POST
Update Positions PUT
Delete Positions DELETE
Get Positions GET
Get All Positions GET

Workstations

Table 219: Supported operations for Workstations

Operation

VERB

Update Workstation PUT
Get Workstation GET
Get All Workstations GET

Employees

Table 220: Supported operations for Employees

Operation

VERB

Create Employee POST
Update Employee PUT
Delete Employee DELETE
Get Employee GET
Get All Employees GET

This section lists the mandatory fields required to create a resource type.

AccessProfiles

Table 221: Mandatory feilds for AccessProfiles

Attribute name

Mandatory

Can be updated

Name

Yes

Yes
PinLength

Yes

Yes

PinTryCount

Yes

Yes

PinExpiration

Yes

Yes

buttonBonding

No

Yes

buttonConnection No

Yes

buttonNewChannel No

Yes

pinNewChannel No

Yes

masterKeyConnection No

Yes

masterKeyNewChannel No

Yes

Companies

  • Name

Departments

  • Name
  • CompanyId

Devices (Update)

  • RFId

Positions

  • Name

Workstations (Update)

  • DepartmentId
  • RFId

Employees

  • FirstName
  • LastName
  • Email
  • DepartmentId
  • PositionId

Mappings

The mappings are listed in the tables below.

Table 222: Employee mapping
SCIM parameter Hideez parameter
Id id
UserName UserName
firstName firstName
lastName lastName
email email
phoneNumber phoneNumber
departmentId departmentId
positionId positionId
device.id device.id
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.batterydevice.battery device.batterydevice.battery
device.firmware deviceirmware
device.state device.state
device.lastSynced device.lastSynced
device.employeeId device.employeeId
device.primaryAccountId device.primaryAccountId
device.acceessProfileId device.acceessProfileId
device.masterPassword device.masterPassword
device.importedAt device.importedAt
device.isOnline device.isOnline
device.deviceAccessProfile.Id device.deviceAccessProfile.Id
device.deviceAccessProfile. name device.deviceAccessProfile. name
device.deviceAccessProfile.createdAt device.deviceAccessProfile. createdAt
device.deviceAccessProfile. updatedAt device.deviceAccessProfile. updatedAt
device.deviceAccessProfile. buttonBonding device.deviceAccessProfile. buttonBonding
device.deviceAccessProfile. buttonConnection device.deviceAccessProfile. buttonConnection
device.deviceAccessProfile. buttonNewChannel device.deviceAccessProfile. buttonNewChannel
device.deviceAccessProfile. pinBonding device.deviceAccessProfile. pinBonding

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.buttonConnection

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.buttonNewChannel

device.deviceAccessProfile.masterKeyBonding

device.deviceAccessProfile.pinBonding

device.deviceAccessProfile.masterKeyConnection

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.masterKeyNewChannel

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationString

device.deviceAccessProfile.pinExpirationString

department.Id

department.Id

department.companyId

department.companyId

department.name

department.name

department.company.id

department.company.id

department.company.name

department.company.name

position.id

position.id

position.name

position.name

fullName

fullName

empCompany

empCompany

empDepartment

empDepartment

currentDevice

currentDevice

 

Table 223: AccessProfile mapping
SCIM parameter Hideez parameter
Id Id
name name
createdAt createdAt
updatedAt updatedAt
buttonBonding buttonBonding
buttonConnection buttonConnection
buttonNewChannel buttonNewChannel

pinBonding

pinBonding

pinConnection

pinConnection

pinNewChannel

pinNewChannel

masterKeyBonding

masterKeyBonding

masterKeyConnection

masterKeyConnection

masterKeyNewChannel

masterKeyNewChannel

pinExpiration

pinExpiration

pinLength

pinLength

pinTryCount

pinTryCount

pinExpirationConverted

pinExpirationConverted

pinExpirationString

pinExpirationString

device.id

device.id

device.mac

device.mac

device.model

device.model

device.rfid

device.rfid

device.battery

device.battery

device.firmware

device.firmware

device.battery

device.battery

device.state

device.state

device.lastSynced

device.lastSynced

device.employeeId

device.employeeId

device.primaryAccountId

device.primaryAccountId

device.acceessProfileId

device.acceessProfileId

device.masterPassword

device.masterPassword

device.importedAt

device.importedAt

device.isOnline

device.isOnline

 

Table 224: Company mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 225: Department mapping
SCIM parameter Hideez parameter
Id Id
companyId companyId
name name
company.id company.id
company.name company.name

 

Table 226: Device mapping
SCIM parameter Hideez parameter
Id Id
mac mac
model model
rfid rfid
battery battery
firmware firmware
state state

lastSynced

lastSynced

employeeId

employeeId

primaryAccountId

primaryAccountId

acceessProfileId

acceessProfileId

masterPassword

masterPassword

importedAt

importedAt

isOnline

isOnline

deviceAccessProfile.Id

deviceAccessProfile.Id

deviceAccessProfile.name

deviceAccessProfile.name

deviceAccessProfile.createdAt

deviceAccessProfile.createdAt

deviceAccessProfile.updatedAt

deviceAccessProfile.updatedAt

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.pinBonding

deviceAccessProfile.pinBonding

deviceAccessProfile.pinConnection

deviceAccessProfile.pinConnection

deviceAccessProfile.pinNewChannel

deviceAccessProfile.pinNewChannel

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinLength

deviceAccessProfile.pinLength

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationString

deviceAccessProfile.pinExpirationString

Table 227: Position mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 228: Workstation mapping
SCIM parameter Hideez parameter
Id Id
name name
domain domain
clientVersion clientVersion
departmentId departmentId
departmentName departmentName
os os

ip

ip

lastSeen

lastSeen

approved

approved

rfid

rfid

companyId

companyId

companyName

department.company.name

proximityDevices[].Id

proximityDevices[].Id

proximityDevices[].deviceId

proximityDevices[].deviceId

proximityDevices[].workstationId

proximityDevices[].workstationId

proximityDevices[].lockProximity

proximityDevices[].lockProximity

proximityDevices[].unlockProximity

proximityDevices[].unlockProximity

proximityDevices[].lockTimeout

proximityDevices[].lockTimeout

Connector limitations

  • You cannot edit an unapproved workstation. You can only edit approved workstations.
  • When you use http in the target URL for the POST, DELETE and Login operations, the cloud APIs return an error. Hence, it is recommended that you use https for the target URL parameter for all operations.

One Identity Manager E2E integration needs

For more information, see One Identity Manager E2E integration needs for Hideez connector.

Mappings

The Hideez connector allows you to connect Hideez with One Identity Starling enabling you to take advantage of the features and products available with Starling Connect that complement and enhance Hideez's wireless security key for passwordless user authentication and centralized password management.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

AccessProfile

Table 214: Supported operations for AccessProfile

Operation

VERB

Create AccessProfile POST
Update AccessProfile PUT
Delete AccessProfile DELETE
Get AccessProfile GET
Get All AccessProfiles GET

Companies

Table 215: Supported operations for Companies

Operation

VERB

Create Company POST
Update Company PUT
Delete Company DELETE
Get Company GET
Get All Companies GET

Departments

Table 216: Supported operations for Departments

Operation

VERB

Create Department POST
Update Department PUT
Delete Department DELETE
Get Department GET
Get All Departments GET

Devices

Table 217: Supported operations for Devices

Operation

VERB

Update Devices PUT
Get Devices GET
Get All Devices GET

Positions

Table 218: Supported operations for Positions

Operation

VERB

Create Positions POST
Update Positions PUT
Delete Positions DELETE
Get Positions GET
Get All Positions GET

Workstations

Table 219: Supported operations for Workstations

Operation

VERB

Update Workstation PUT
Get Workstation GET
Get All Workstations GET

Employees

Table 220: Supported operations for Employees

Operation

VERB

Create Employee POST
Update Employee PUT
Delete Employee DELETE
Get Employee GET
Get All Employees GET

Mandatory fields

This section lists the mandatory fields required to create a resource type.

AccessProfiles

Table 221: Mandatory feilds for AccessProfiles

Attribute name

Mandatory

Can be updated

Name

Yes

Yes
PinLength

Yes

Yes

PinTryCount

Yes

Yes

PinExpiration

Yes

Yes

buttonBonding

No

Yes

buttonConnection No

Yes

buttonNewChannel No

Yes

pinNewChannel No

Yes

masterKeyConnection No

Yes

masterKeyNewChannel No

Yes

Companies

  • Name

Departments

  • Name
  • CompanyId

Devices (Update)

  • RFId

Positions

  • Name

Workstations (Update)

  • DepartmentId
  • RFId

Employees

  • FirstName
  • LastName
  • Email
  • DepartmentId
  • PositionId

The mappings are listed in the tables below.

Table 222: Employee mapping
SCIM parameter Hideez parameter
Id id
UserName UserName
firstName firstName
lastName lastName
email email
phoneNumber phoneNumber
departmentId departmentId
positionId positionId
device.id device.id
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.batterydevice.battery device.batterydevice.battery
device.firmware deviceirmware
device.state device.state
device.lastSynced device.lastSynced
device.employeeId device.employeeId
device.primaryAccountId device.primaryAccountId
device.acceessProfileId device.acceessProfileId
device.masterPassword device.masterPassword
device.importedAt device.importedAt
device.isOnline device.isOnline
device.deviceAccessProfile.Id device.deviceAccessProfile.Id
device.deviceAccessProfile. name device.deviceAccessProfile. name
device.deviceAccessProfile.createdAt device.deviceAccessProfile. createdAt
device.deviceAccessProfile. updatedAt device.deviceAccessProfile. updatedAt
device.deviceAccessProfile. buttonBonding device.deviceAccessProfile. buttonBonding
device.deviceAccessProfile. buttonConnection device.deviceAccessProfile. buttonConnection
device.deviceAccessProfile. buttonNewChannel device.deviceAccessProfile. buttonNewChannel
device.deviceAccessProfile. pinBonding device.deviceAccessProfile. pinBonding

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.buttonConnection

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.buttonNewChannel

device.deviceAccessProfile.masterKeyBonding

device.deviceAccessProfile.pinBonding

device.deviceAccessProfile.masterKeyConnection

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.masterKeyNewChannel

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationString

device.deviceAccessProfile.pinExpirationString

department.Id

department.Id

department.companyId

department.companyId

department.name

department.name

department.company.id

department.company.id

department.company.name

department.company.name

position.id

position.id

position.name

position.name

fullName

fullName

empCompany

empCompany

empDepartment

empDepartment

currentDevice

currentDevice

 

Table 223: AccessProfile mapping
SCIM parameter Hideez parameter
Id Id
name name
createdAt createdAt
updatedAt updatedAt
buttonBonding buttonBonding
buttonConnection buttonConnection
buttonNewChannel buttonNewChannel

pinBonding

pinBonding

pinConnection

pinConnection

pinNewChannel

pinNewChannel

masterKeyBonding

masterKeyBonding

masterKeyConnection

masterKeyConnection

masterKeyNewChannel

masterKeyNewChannel

pinExpiration

pinExpiration

pinLength

pinLength

pinTryCount

pinTryCount

pinExpirationConverted

pinExpirationConverted

pinExpirationString

pinExpirationString

device.id

device.id

device.mac

device.mac

device.model

device.model

device.rfid

device.rfid

device.battery

device.battery

device.firmware

device.firmware

device.battery

device.battery

device.state

device.state

device.lastSynced

device.lastSynced

device.employeeId

device.employeeId

device.primaryAccountId

device.primaryAccountId

device.acceessProfileId

device.acceessProfileId

device.masterPassword

device.masterPassword

device.importedAt

device.importedAt

device.isOnline

device.isOnline

 

Table 224: Company mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 225: Department mapping
SCIM parameter Hideez parameter
Id Id
companyId companyId
name name
company.id company.id
company.name company.name

 

Table 226: Device mapping
SCIM parameter Hideez parameter
Id Id
mac mac
model model
rfid rfid
battery battery
firmware firmware
state state

lastSynced

lastSynced

employeeId

employeeId

primaryAccountId

primaryAccountId

acceessProfileId

acceessProfileId

masterPassword

masterPassword

importedAt

importedAt

isOnline

isOnline

deviceAccessProfile.Id

deviceAccessProfile.Id

deviceAccessProfile.name

deviceAccessProfile.name

deviceAccessProfile.createdAt

deviceAccessProfile.createdAt

deviceAccessProfile.updatedAt

deviceAccessProfile.updatedAt

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.pinBonding

deviceAccessProfile.pinBonding

deviceAccessProfile.pinConnection

deviceAccessProfile.pinConnection

deviceAccessProfile.pinNewChannel

deviceAccessProfile.pinNewChannel

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinLength

deviceAccessProfile.pinLength

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationString

deviceAccessProfile.pinExpirationString

Table 227: Position mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 228: Workstation mapping
SCIM parameter Hideez parameter
Id Id
name name
domain domain
clientVersion clientVersion
departmentId departmentId
departmentName departmentName
os os

ip

ip

lastSeen

lastSeen

approved

approved

rfid

rfid

companyId

companyId

companyName

department.company.name

proximityDevices[].Id

proximityDevices[].Id

proximityDevices[].deviceId

proximityDevices[].deviceId

proximityDevices[].workstationId

proximityDevices[].workstationId

proximityDevices[].lockProximity

proximityDevices[].lockProximity

proximityDevices[].unlockProximity

proximityDevices[].unlockProximity

proximityDevices[].lockTimeout

proximityDevices[].lockTimeout

Connector limitations

  • You cannot edit an unapproved workstation. You can only edit approved workstations.
  • When you use http in the target URL for the POST, DELETE and Login operations, the cloud APIs return an error. Hence, it is recommended that you use https for the target URL parameter for all operations.

One Identity Manager E2E integration needs

For more information, see One Identity Manager E2E integration needs for Hideez connector.

Connector limitations

The Hideez connector allows you to connect Hideez with One Identity Starling enabling you to take advantage of the features and products available with Starling Connect that complement and enhance Hideez's wireless security key for passwordless user authentication and centralized password management.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

AccessProfile

Table 214: Supported operations for AccessProfile

Operation

VERB

Create AccessProfile POST
Update AccessProfile PUT
Delete AccessProfile DELETE
Get AccessProfile GET
Get All AccessProfiles GET

Companies

Table 215: Supported operations for Companies

Operation

VERB

Create Company POST
Update Company PUT
Delete Company DELETE
Get Company GET
Get All Companies GET

Departments

Table 216: Supported operations for Departments

Operation

VERB

Create Department POST
Update Department PUT
Delete Department DELETE
Get Department GET
Get All Departments GET

Devices

Table 217: Supported operations for Devices

Operation

VERB

Update Devices PUT
Get Devices GET
Get All Devices GET

Positions

Table 218: Supported operations for Positions

Operation

VERB

Create Positions POST
Update Positions PUT
Delete Positions DELETE
Get Positions GET
Get All Positions GET

Workstations

Table 219: Supported operations for Workstations

Operation

VERB

Update Workstation PUT
Get Workstation GET
Get All Workstations GET

Employees

Table 220: Supported operations for Employees

Operation

VERB

Create Employee POST
Update Employee PUT
Delete Employee DELETE
Get Employee GET
Get All Employees GET

Mandatory fields

This section lists the mandatory fields required to create a resource type.

AccessProfiles

Table 221: Mandatory feilds for AccessProfiles

Attribute name

Mandatory

Can be updated

Name

Yes

Yes
PinLength

Yes

Yes

PinTryCount

Yes

Yes

PinExpiration

Yes

Yes

buttonBonding

No

Yes

buttonConnection No

Yes

buttonNewChannel No

Yes

pinNewChannel No

Yes

masterKeyConnection No

Yes

masterKeyNewChannel No

Yes

Companies

  • Name

Departments

  • Name
  • CompanyId

Devices (Update)

  • RFId

Positions

  • Name

Workstations (Update)

  • DepartmentId
  • RFId

Employees

  • FirstName
  • LastName
  • Email
  • DepartmentId
  • PositionId

Mappings

The mappings are listed in the tables below.

Table 222: Employee mapping
SCIM parameter Hideez parameter
Id id
UserName UserName
firstName firstName
lastName lastName
email email
phoneNumber phoneNumber
departmentId departmentId
positionId positionId
device.id device.id
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.batterydevice.battery device.batterydevice.battery
device.firmware deviceirmware
device.state device.state
device.lastSynced device.lastSynced
device.employeeId device.employeeId
device.primaryAccountId device.primaryAccountId
device.acceessProfileId device.acceessProfileId
device.masterPassword device.masterPassword
device.importedAt device.importedAt
device.isOnline device.isOnline
device.deviceAccessProfile.Id device.deviceAccessProfile.Id
device.deviceAccessProfile. name device.deviceAccessProfile. name
device.deviceAccessProfile.createdAt device.deviceAccessProfile. createdAt
device.deviceAccessProfile. updatedAt device.deviceAccessProfile. updatedAt
device.deviceAccessProfile. buttonBonding device.deviceAccessProfile. buttonBonding
device.deviceAccessProfile. buttonConnection device.deviceAccessProfile. buttonConnection
device.deviceAccessProfile. buttonNewChannel device.deviceAccessProfile. buttonNewChannel
device.deviceAccessProfile. pinBonding device.deviceAccessProfile. pinBonding

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.buttonConnection

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.buttonNewChannel

device.deviceAccessProfile.masterKeyBonding

device.deviceAccessProfile.pinBonding

device.deviceAccessProfile.masterKeyConnection

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.masterKeyNewChannel

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationString

device.deviceAccessProfile.pinExpirationString

department.Id

department.Id

department.companyId

department.companyId

department.name

department.name

department.company.id

department.company.id

department.company.name

department.company.name

position.id

position.id

position.name

position.name

fullName

fullName

empCompany

empCompany

empDepartment

empDepartment

currentDevice

currentDevice

 

Table 223: AccessProfile mapping
SCIM parameter Hideez parameter
Id Id
name name
createdAt createdAt
updatedAt updatedAt
buttonBonding buttonBonding
buttonConnection buttonConnection
buttonNewChannel buttonNewChannel

pinBonding

pinBonding

pinConnection

pinConnection

pinNewChannel

pinNewChannel

masterKeyBonding

masterKeyBonding

masterKeyConnection

masterKeyConnection

masterKeyNewChannel

masterKeyNewChannel

pinExpiration

pinExpiration

pinLength

pinLength

pinTryCount

pinTryCount

pinExpirationConverted

pinExpirationConverted

pinExpirationString

pinExpirationString

device.id

device.id

device.mac

device.mac

device.model

device.model

device.rfid

device.rfid

device.battery

device.battery

device.firmware

device.firmware

device.battery

device.battery

device.state

device.state

device.lastSynced

device.lastSynced

device.employeeId

device.employeeId

device.primaryAccountId

device.primaryAccountId

device.acceessProfileId

device.acceessProfileId

device.masterPassword

device.masterPassword

device.importedAt

device.importedAt

device.isOnline

device.isOnline

 

Table 224: Company mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 225: Department mapping
SCIM parameter Hideez parameter
Id Id
companyId companyId
name name
company.id company.id
company.name company.name

 

Table 226: Device mapping
SCIM parameter Hideez parameter
Id Id
mac mac
model model
rfid rfid
battery battery
firmware firmware
state state

lastSynced

lastSynced

employeeId

employeeId

primaryAccountId

primaryAccountId

acceessProfileId

acceessProfileId

masterPassword

masterPassword

importedAt

importedAt

isOnline

isOnline

deviceAccessProfile.Id

deviceAccessProfile.Id

deviceAccessProfile.name

deviceAccessProfile.name

deviceAccessProfile.createdAt

deviceAccessProfile.createdAt

deviceAccessProfile.updatedAt

deviceAccessProfile.updatedAt

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.pinBonding

deviceAccessProfile.pinBonding

deviceAccessProfile.pinConnection

deviceAccessProfile.pinConnection

deviceAccessProfile.pinNewChannel

deviceAccessProfile.pinNewChannel

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinLength

deviceAccessProfile.pinLength

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationString

deviceAccessProfile.pinExpirationString

Table 227: Position mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 228: Workstation mapping
SCIM parameter Hideez parameter
Id Id
name name
domain domain
clientVersion clientVersion
departmentId departmentId
departmentName departmentName
os os

ip

ip

lastSeen

lastSeen

approved

approved

rfid

rfid

companyId

companyId

companyName

department.company.name

proximityDevices[].Id

proximityDevices[].Id

proximityDevices[].deviceId

proximityDevices[].deviceId

proximityDevices[].workstationId

proximityDevices[].workstationId

proximityDevices[].lockProximity

proximityDevices[].lockProximity

proximityDevices[].unlockProximity

proximityDevices[].unlockProximity

proximityDevices[].lockTimeout

proximityDevices[].lockTimeout

  • You cannot edit an unapproved workstation. You can only edit approved workstations.
  • When you use http in the target URL for the POST, DELETE and Login operations, the cloud APIs return an error. Hence, it is recommended that you use https for the target URL parameter for all operations.

One Identity Manager E2E integration needs

For more information, see One Identity Manager E2E integration needs for Hideez connector.

One Identity Manager E2E integration needs

The Hideez connector allows you to connect Hideez with One Identity Starling enabling you to take advantage of the features and products available with Starling Connect that complement and enhance Hideez's wireless security key for passwordless user authentication and centralized password management.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

AccessProfile

Table 214: Supported operations for AccessProfile

Operation

VERB

Create AccessProfile POST
Update AccessProfile PUT
Delete AccessProfile DELETE
Get AccessProfile GET
Get All AccessProfiles GET

Companies

Table 215: Supported operations for Companies

Operation

VERB

Create Company POST
Update Company PUT
Delete Company DELETE
Get Company GET
Get All Companies GET

Departments

Table 216: Supported operations for Departments

Operation

VERB

Create Department POST
Update Department PUT
Delete Department DELETE
Get Department GET
Get All Departments GET

Devices

Table 217: Supported operations for Devices

Operation

VERB

Update Devices PUT
Get Devices GET
Get All Devices GET

Positions

Table 218: Supported operations for Positions

Operation

VERB

Create Positions POST
Update Positions PUT
Delete Positions DELETE
Get Positions GET
Get All Positions GET

Workstations

Table 219: Supported operations for Workstations

Operation

VERB

Update Workstation PUT
Get Workstation GET
Get All Workstations GET

Employees

Table 220: Supported operations for Employees

Operation

VERB

Create Employee POST
Update Employee PUT
Delete Employee DELETE
Get Employee GET
Get All Employees GET

Mandatory fields

This section lists the mandatory fields required to create a resource type.

AccessProfiles

Table 221: Mandatory feilds for AccessProfiles

Attribute name

Mandatory

Can be updated

Name

Yes

Yes
PinLength

Yes

Yes

PinTryCount

Yes

Yes

PinExpiration

Yes

Yes

buttonBonding

No

Yes

buttonConnection No

Yes

buttonNewChannel No

Yes

pinNewChannel No

Yes

masterKeyConnection No

Yes

masterKeyNewChannel No

Yes

Companies

  • Name

Departments

  • Name
  • CompanyId

Devices (Update)

  • RFId

Positions

  • Name

Workstations (Update)

  • DepartmentId
  • RFId

Employees

  • FirstName
  • LastName
  • Email
  • DepartmentId
  • PositionId

Mappings

The mappings are listed in the tables below.

Table 222: Employee mapping
SCIM parameter Hideez parameter
Id id
UserName UserName
firstName firstName
lastName lastName
email email
phoneNumber phoneNumber
departmentId departmentId
positionId positionId
device.id device.id
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.mac device.mac
device.model device.model
device.rfid device.rfid
device.batterydevice.battery device.batterydevice.battery
device.firmware deviceirmware
device.state device.state
device.lastSynced device.lastSynced
device.employeeId device.employeeId
device.primaryAccountId device.primaryAccountId
device.acceessProfileId device.acceessProfileId
device.masterPassword device.masterPassword
device.importedAt device.importedAt
device.isOnline device.isOnline
device.deviceAccessProfile.Id device.deviceAccessProfile.Id
device.deviceAccessProfile. name device.deviceAccessProfile. name
device.deviceAccessProfile.createdAt device.deviceAccessProfile. createdAt
device.deviceAccessProfile. updatedAt device.deviceAccessProfile. updatedAt
device.deviceAccessProfile. buttonBonding device.deviceAccessProfile. buttonBonding
device.deviceAccessProfile. buttonConnection device.deviceAccessProfile. buttonConnection
device.deviceAccessProfile. buttonNewChannel device.deviceAccessProfile. buttonNewChannel
device.deviceAccessProfile. pinBonding device.deviceAccessProfile. pinBonding

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.buttonConnection

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.buttonNewChannel

device.deviceAccessProfile.masterKeyBonding

device.deviceAccessProfile.pinBonding

device.deviceAccessProfile.masterKeyConnection

device.deviceAccessProfile.pinConnection

device.deviceAccessProfile.masterKeyNewChannel

device.deviceAccessProfile.pinNewChannel

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinExpiration

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinLength

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinTryCount

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationConverted

device.deviceAccessProfile.pinExpirationString

device.deviceAccessProfile.pinExpirationString

department.Id

department.Id

department.companyId

department.companyId

department.name

department.name

department.company.id

department.company.id

department.company.name

department.company.name

position.id

position.id

position.name

position.name

fullName

fullName

empCompany

empCompany

empDepartment

empDepartment

currentDevice

currentDevice

 

Table 223: AccessProfile mapping
SCIM parameter Hideez parameter
Id Id
name name
createdAt createdAt
updatedAt updatedAt
buttonBonding buttonBonding
buttonConnection buttonConnection
buttonNewChannel buttonNewChannel

pinBonding

pinBonding

pinConnection

pinConnection

pinNewChannel

pinNewChannel

masterKeyBonding

masterKeyBonding

masterKeyConnection

masterKeyConnection

masterKeyNewChannel

masterKeyNewChannel

pinExpiration

pinExpiration

pinLength

pinLength

pinTryCount

pinTryCount

pinExpirationConverted

pinExpirationConverted

pinExpirationString

pinExpirationString

device.id

device.id

device.mac

device.mac

device.model

device.model

device.rfid

device.rfid

device.battery

device.battery

device.firmware

device.firmware

device.battery

device.battery

device.state

device.state

device.lastSynced

device.lastSynced

device.employeeId

device.employeeId

device.primaryAccountId

device.primaryAccountId

device.acceessProfileId

device.acceessProfileId

device.masterPassword

device.masterPassword

device.importedAt

device.importedAt

device.isOnline

device.isOnline

 

Table 224: Company mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 225: Department mapping
SCIM parameter Hideez parameter
Id Id
companyId companyId
name name
company.id company.id
company.name company.name

 

Table 226: Device mapping
SCIM parameter Hideez parameter
Id Id
mac mac
model model
rfid rfid
battery battery
firmware firmware
state state

lastSynced

lastSynced

employeeId

employeeId

primaryAccountId

primaryAccountId

acceessProfileId

acceessProfileId

masterPassword

masterPassword

importedAt

importedAt

isOnline

isOnline

deviceAccessProfile.Id

deviceAccessProfile.Id

deviceAccessProfile.name

deviceAccessProfile.name

deviceAccessProfile.createdAt

deviceAccessProfile.createdAt

deviceAccessProfile.updatedAt

deviceAccessProfile.updatedAt

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonBonding

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonConnection

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.buttonNewChannel

deviceAccessProfile.pinBonding

deviceAccessProfile.pinBonding

deviceAccessProfile.pinConnection

deviceAccessProfile.pinConnection

deviceAccessProfile.pinNewChannel

deviceAccessProfile.pinNewChannel

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyBonding

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyConnection

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.masterKeyNewChannel

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinExpiration

deviceAccessProfile.pinLength

deviceAccessProfile.pinLength

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinTryCount

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationConverted

deviceAccessProfile.pinExpirationString

deviceAccessProfile.pinExpirationString

Table 227: Position mapping
SCIM parameter Hideez parameter
id id
name name

 

Table 228: Workstation mapping
SCIM parameter Hideez parameter
Id Id
name name
domain domain
clientVersion clientVersion
departmentId departmentId
departmentName departmentName
os os

ip

ip

lastSeen

lastSeen

approved

approved

rfid

rfid

companyId

companyId

companyName

department.company.name

proximityDevices[].Id

proximityDevices[].Id

proximityDevices[].deviceId

proximityDevices[].deviceId

proximityDevices[].workstationId

proximityDevices[].workstationId

proximityDevices[].lockProximity

proximityDevices[].lockProximity

proximityDevices[].unlockProximity

proximityDevices[].unlockProximity

proximityDevices[].lockTimeout

proximityDevices[].lockTimeout

Connector limitations

  • You cannot edit an unapproved workstation. You can only edit approved workstations.
  • When you use http in the target URL for the POST, DELETE and Login operations, the cloud APIs return an error. Hence, it is recommended that you use https for the target URL parameter for all operations.

For more information, see One Identity Manager E2E integration needs for Hideez connector.

관련 문서

The document was helpful.

평가 결과 선택

I easily found the information I needed.

평가 결과 선택