Chat now with support
Chat with Support

Cloud Access Manager 8.1.3 - How To Configure User Mapping


This guide describes how to configure Cloud Access Manager with the user mapping tool. The user mapping tool enables you to map user applications to their user account in Active Directory where the username is not derived from subject mapping.

For information on configuring Cloud Access Manager, please refer to the One Identity Cloud Access Manager Configuration Guide.


Mapping users when you configure the application

When an application account is provisioned in Cloud Access Manager, the attribute specified in the Take the username from the following attribute field on the Subject Mapping page determines how the usernames associated with the application are derived, for example sAMaccountname or mail. For further information, please refer to the One Identity Cloud Access Manager Configuration Guide.

If the user has an existing account for an application that has provisioning enabled in Cloud Access Manager, but the user’s existing username for the application does not comply with the attribute specified on the Subject Mapping page, you can apply the user mapping tool to map their existing application username to their user account in Active Directory.

To map users

  1. When you have completed the application configuration wizard, click Go to User Mapping on the Federation Settings page.

    NOTE: The user mapping tool lists the users in the:

    • Directories that are configured in the Cloud Access Manager front-end authenticators
    • Application you are configuring.

    You can filter these lists to pinpoint the users that you want to map.

  2. Select the users you want to map and click Map User.

  3. The current mapping for the username is shown in the Active Directory list and in the application list.

  4. The application will appear in the user’s application catalog. When the user clicks the application to add it to the application portal, Cloud Access Manager will detect that the user already has an account and will not provision a new account for that user.

Mapping users after the application has been configured

As the administrator, you can map users when you configure the application in Cloud Access Manager, or you can map users after the application has been configured.

You can map users after the application has been configured, either:

  • From the Provisioning page of the application editor:
  • Or by selecting User Mapping from the Users section on the Cloud Access Manager landing page:
    1. Click Manage Users | User Mapping.
    2. Select an application from the list in the user mapping pane and map the users.

Un-mapping users

To un-map a user

  1. Navigate to the User Mapping page.
  2. From the front-end authenticator Users list, select the required mapped user.
  3. Select the corresponding mapped user from the application Users list.
  4. Click Un-Map User.
Self Service Tools
Knowledge Base
Notifications & Alerts
Product Support
Software Downloads
Technical Documentation
User Forums
Video Tutorials
RSS Feed
Contact Us
Licensing Assistance
Technical Support
View All
Related Documents