Chat now with support
Chat with Support

Identity Manager 9.1.1 - Administration Guide for Connecting to Cloud Applications

Mapping cloud applications in One Identity Manager Synchronizing cloud applications through the Universal Cloud Interface Provisioning object changes Managing provisioning processes in the Web Portal Mapping cloud objects in One Identity Manager
Cloud applications Container structures in cloud applications User accounts in cloud applications Groups and system entitlements in cloud applications Permissions controls in a cloud application
Base data for managing cloud applications Default project template for cloud applications Cloud system object processing methods Configuration parameters for managing cloud applications

Cloud applications

Each cloud application is mapped as its own base object in One Identity Manager. The cloud application main data is displayed in the Manager. Here you can assign the operators.

Properties of existing cloud applications are maintained in cloud target systems in the Cloud Systems Management Module and transferred to the Universal Cloud Interface Module by provisioning.

NOTE: The Synchronization Editor sets up the cloud applications in the One Identity Manager database.

Detailed information about this topic

Editing cloud applications

The cloud application general main data is displayed in the Manager. Here you can assign the operators and specify alternative column names. You can also add a cloud application in the Manager if required.

To display the main data of a cloud application and assign operators

  1. In the Manager, select the Universal Cloud Interface > Basic configuration data > Cloud applications category.

  2. Select a cloud application in the result list.

  3. Select the Change main data task.

  4. To handle provisioning processes manually in the Web Portal, select an application role for operators in the Operator field.

  5. Save the changes.

TIP: You can also display cloud application properties in the Universal Cloud Interface > <cloud application> category.

Detailed information about this topic

General main data for cloud applications

The following general main data is displayed for a cloud application. To handle manual provisioning operations, assign an application role for operators.

Table 15: Cloud application main data

Property

Description

Cloud application Name of the cloud application.
Canonical name Full name of the cloud application. The canonical name is made up of the server's DNS name or it's URL respectively, the port and the service's URI.

Example: identities.example.net:8080/scim/v2

Distinguished name The cloud application's distinguished name. This distinguished name is used to form distinguished names for child objects.

Syntax example: DC = <canonical name>

Display name Name for displaying the cloud application in One Identity Manager tools.
Operator Application role in which the cloud operators are defined. Operator edit manual provisioning processes for the cloud application that they are assigned to. Every cloud application can be assigned to other operators.

Select the One Identity Manager application, whose members are allowed to edit manual provisioning processes. Use the button to add a new application role.

Types of system entitlements used

Types of system entitlements to which user accounts can be assigned in this cloud application.

User account contains memberships

Specifies which types of system entitlements maintain assignments to user accounts.

Example:

In the System entitlement types used menu, the values Group and System entitlement 1 are selected. In the User account contains memberships menu, only the value System entitlement 1 is selected.

Assignments of user accounts to groups are saved with the groups, the assignments of user accounts to system entitlements 1 with the user accounts.

Description

Text field for additional explanation.

Manual provisioning

Specifies whether changes to cloud objects in the One Identity Manager database are automatically provisioned in the cloud application. If this option is not set, processes for automatic provisioning of object modifications are configured.

Set this option, if object modifications are not allowed to be published automatically in the cloud application. Use the Web Portal to transfer the changes to the cloud application.

IMPORTANT: If you set this option, you must perform regular and frequent synchronization to ensure that data remains consistent between the One Identity Manager database and the cloud application.
User account deletion not permitted Specifies whether user accounts in the cloud application can be deleted. If this option is set, user account can only be disabled.
Related topics

Specifying alternative column names

If you require different names for input fields to those on the main data form, you can specify a language-dependent alternative column name for each object type.

To specify alternative column names

  1. In the Manager, select the Universal Cloud Interface > Basic configuration data > Cloud applications category.

  2. In the result list, select a cloud application and select the Change main data task.

  3. Switch to the Alternative column names tab.

  4. Open the membership tree in the table whose column name you want to change.

    All the columns in this table are listed with their default column names.

  5. Enter any name in the login language in use.

  6. Save the changes.
Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating