Chat now with support
Chat with Support

Starling Connect Hosted - One Identity Manager Administration Guide

About this guide One Identity Starling Connect overview One Identity Starling Supported cloud applications Working with connectors Connector versions Salesforce Facebook Workplace SAP Cloud Platform JIRA Server RSA Archer SuccessFactors AWS IAM S3 ServiceNow Dropbox Crowd Atlassian JIRA Confluence Trello Box Pipedrive SuccessFactors HR NutShell Insightly Egnyte SugarCRM Oracle IDCS Statuspage Zendesk Sell Workbooks DocuSign Citrix ShareFile Zendesk Azure AD Google Workspace Concur Tableau GoToMeeting Coupa AWS Cognito Okta DataDog Hideez Opsgenie Informatica Cloud Services AppDynamics Marketo Workday HR OneLogin PingOne Aha! SAP Litmos HackerRank Slack ActiveCampaign Webex Apigee Databricks Hive PagerDuty Dayforce Smartsheet Pingboard SAP Cloud for Customer Azure Infrastructure Oracle Fusion Cloud Majesco LuccaHR OpenText JFrog Artifactory xMatters Discourse Testrail ChipSoft PingOne Platform Azure DevOps UKG PRO Atlassian Cloud Appendix: Creating a service account in Google Workspace Appendix: Setting a trial account on Salesforce Registering the application, providing necessary permissions, retrieving Client Id and Client Secret from the Azure AD tenant Generating a private key for service account in GoToMeeting Configuring Amazon S3 AWS connector to support entitlements for User and Group Configuring Box connector to support additional email IDs for users One Identity Manager E2E integration needs for Hideez connector Configuring custom attributes for ServiceNow v.1.0 Configuring custom attributes for Coupa v.1.0 Configuring custom attributes in connectors Disabling attributes Configuring a connector that uses the consent feature Synchronization and integration of Roles object type with One Identity Manager Synchronization and integration of Workspaces object type with One Identity Manager Synchronization and integration of Products object type with One Identity Manager User centric membership Creating multi-valued custom fields in One Identity Manager Synchronization and assignment of PermissionSets to Users with One Identity Manager Connectors that support password attribute in User object Connectors that do not support special characters in the object ID Creating an app for using SCIM on Slack Enterprise Grid Organization Creating a Webex integration application, providing necessary scopes, retrieving Client Id and Client Secret Retrieving the API key from Facebook Workplace Outbound IP addresses Values for customer-specific configuration parameters in Workday HR connector Initiate an OAuth connection to SuccessFactors Creating custom editable/upsertable attributes in Successfactors employee central Custom Foundation Objects in Successfactors HR connector Configuring additional datetime offset in connectors How to Create custom attribute for Users in SuccessFactors portal SAP Cloud for Customer - Steps to add custom fields at One Identity Manager attributes Creating a Service Principal for the Azure Infrastructure Connector Workday permissions needed to integrate via the Starling Connector Configuring integration application in DocuSign Creating integration Connect Client in Coupa Retrieving Azure DevOps Personal Access Token (PAT) Setup integration system and field override service in Workday Retrieving Atlassian Cloud API Key and Directory ID

Supervisor configuration parameters

SAP Cloud for Customer (C4C) is a cloud solution to manage customer sales, customer service and marketing activities efficiently and is one of the key SAP solution to manage customer relationship.

To configure the connector, following parameters are required:

Supported objects and operations

Users

Table 350: Supported operations for Users

Operation

VERB

Create User POST

Get a User

GET

List Users

GET

Update a User

PUT

Delete User

DELETE

Roles

Table 351: Supported operations for Roles

Operation

VERB

Get a Role

GET

List Roles

GET

Mandatory fields

Users

  • name.givenName

  • name.familyName

Mappings

Table 352: SAPC4CEmployee,BusinessUser to SCIM User mapping
SCIM properties SAPC4C properties
active EmployeeValidityEndDate
addresses[].country CountryCode
addresses[].postalCode PostalCode
addresses[].region RegionCode
addresses[].streetAddress Street
displayName FirstName + " " + LastName
emails[].value Email

extension.businessUserLanguageCode

LogonLanguageCode

extension.businessUserLanguage

LogonLanguageCodeText

extension.companyName CompanyName
extension.dateFormat DateFormat
extension.dateFormatCode DateFormatCode
extension.decimalFormatCode DecimalFormatCode
extension.department Department
extension.employeeId EmployeeID
extension.gender GenderCodeText
extension.genderCode GenderCode
extension.employeeLanguage LanguageCodeText
extension.employeeLanguageCode LanguageCode
extension.managerName ManagerName
extension.maritalStatus MaritalStatusCodeText
extension.maritalStatusCode MaritalStatusCode
extension.passwordPolicyCode PasswordPolicyCode
extension.timeFormat TimeFormat
extension.timeFormatCode TimeFormatCode
extension.titleCode TitleCode
extension.titleCodeText TitleCodeText
extension.userId UserID
extension.userLockedIndicator UserLockedIndicator

extension.validityEndDate

UserValidityEndDate

extension.validityStartDate

UserValidityStartDate

id ObjectID
meta.created CreatedOn
meta.lastModified EntityLastChangedOn
name.familyName LastName
name.givenName FirstName
name.middleName MiddleName
nickName NickName
phoneNumbers[].value MobilePhoneNumber
roles.value EmployeeUserBusinessRoleAssignment.BusinessRoleID
timezone TimeZoneCode
userName UserID
Table 353: SAPC4CIdentityBusinessRoles to SCIM Role mapping
SCIM properties SAPC4C properties
id ObjectID
name Name
meta.created CreationDateTime
meta.lastModified EntityLastChangedOn

 

Connector limitations

  • Update is not supported for attributes like ManagerName, CompanyName and Department, as they come under Organization endpoints.

  • Deleting a User, will inactivate it. But the user will still be present in the list of users.

  • Due to the target API behavior, any text value can be used as the value for phoneNumbers.

  • For most of the error scenarios, the status code returned is 500.

  • While user creation, the user will still be created if there is an error while user role assignments.

  • Due to One IM limitation on DateTime attributes, value having 'YEAR' less than 1753 could not be shown in One IM user interface.

Supported objects and operations

SAP Cloud for Customer (C4C) is a cloud solution to manage customer sales, customer service and marketing activities efficiently and is one of the key SAP solution to manage customer relationship.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Users

Table 350: Supported operations for Users

Operation

VERB

Create User POST

Get a User

GET

List Users

GET

Update a User

PUT

Delete User

DELETE

Roles

Table 351: Supported operations for Roles

Operation

VERB

Get a Role

GET

List Roles

GET

Mandatory fields

Users

  • name.givenName

  • name.familyName

Mappings

Table 352: SAPC4CEmployee,BusinessUser to SCIM User mapping
SCIM properties SAPC4C properties
active EmployeeValidityEndDate
addresses[].country CountryCode
addresses[].postalCode PostalCode
addresses[].region RegionCode
addresses[].streetAddress Street
displayName FirstName + " " + LastName
emails[].value Email

extension.businessUserLanguageCode

LogonLanguageCode

extension.businessUserLanguage

LogonLanguageCodeText

extension.companyName CompanyName
extension.dateFormat DateFormat
extension.dateFormatCode DateFormatCode
extension.decimalFormatCode DecimalFormatCode
extension.department Department
extension.employeeId EmployeeID
extension.gender GenderCodeText
extension.genderCode GenderCode
extension.employeeLanguage LanguageCodeText
extension.employeeLanguageCode LanguageCode
extension.managerName ManagerName
extension.maritalStatus MaritalStatusCodeText
extension.maritalStatusCode MaritalStatusCode
extension.passwordPolicyCode PasswordPolicyCode
extension.timeFormat TimeFormat
extension.timeFormatCode TimeFormatCode
extension.titleCode TitleCode
extension.titleCodeText TitleCodeText
extension.userId UserID
extension.userLockedIndicator UserLockedIndicator

extension.validityEndDate

UserValidityEndDate

extension.validityStartDate

UserValidityStartDate

id ObjectID
meta.created CreatedOn
meta.lastModified EntityLastChangedOn
name.familyName LastName
name.givenName FirstName
name.middleName MiddleName
nickName NickName
phoneNumbers[].value MobilePhoneNumber
roles.value EmployeeUserBusinessRoleAssignment.BusinessRoleID
timezone TimeZoneCode
userName UserID
Table 353: SAPC4CIdentityBusinessRoles to SCIM Role mapping
SCIM properties SAPC4C properties
id ObjectID
name Name
meta.created CreationDateTime
meta.lastModified EntityLastChangedOn

 

Connector limitations

  • Update is not supported for attributes like ManagerName, CompanyName and Department, as they come under Organization endpoints.

  • Deleting a User, will inactivate it. But the user will still be present in the list of users.

  • Due to the target API behavior, any text value can be used as the value for phoneNumbers.

  • For most of the error scenarios, the status code returned is 500.

  • While user creation, the user will still be created if there is an error while user role assignments.

  • Due to One IM limitation on DateTime attributes, value having 'YEAR' less than 1753 could not be shown in One IM user interface.

Mandatory fields

SAP Cloud for Customer (C4C) is a cloud solution to manage customer sales, customer service and marketing activities efficiently and is one of the key SAP solution to manage customer relationship.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

Users

Table 350: Supported operations for Users

Operation

VERB

Create User POST

Get a User

GET

List Users

GET

Update a User

PUT

Delete User

DELETE

Roles

Table 351: Supported operations for Roles

Operation

VERB

Get a Role

GET

List Roles

GET

Users

  • name.givenName

  • name.familyName

Mappings

Table 352: SAPC4CEmployee,BusinessUser to SCIM User mapping
SCIM properties SAPC4C properties
active EmployeeValidityEndDate
addresses[].country CountryCode
addresses[].postalCode PostalCode
addresses[].region RegionCode
addresses[].streetAddress Street
displayName FirstName + " " + LastName
emails[].value Email

extension.businessUserLanguageCode

LogonLanguageCode

extension.businessUserLanguage

LogonLanguageCodeText

extension.companyName CompanyName
extension.dateFormat DateFormat
extension.dateFormatCode DateFormatCode
extension.decimalFormatCode DecimalFormatCode
extension.department Department
extension.employeeId EmployeeID
extension.gender GenderCodeText
extension.genderCode GenderCode
extension.employeeLanguage LanguageCodeText
extension.employeeLanguageCode LanguageCode
extension.managerName ManagerName
extension.maritalStatus MaritalStatusCodeText
extension.maritalStatusCode MaritalStatusCode
extension.passwordPolicyCode PasswordPolicyCode
extension.timeFormat TimeFormat
extension.timeFormatCode TimeFormatCode
extension.titleCode TitleCode
extension.titleCodeText TitleCodeText
extension.userId UserID
extension.userLockedIndicator UserLockedIndicator

extension.validityEndDate

UserValidityEndDate

extension.validityStartDate

UserValidityStartDate

id ObjectID
meta.created CreatedOn
meta.lastModified EntityLastChangedOn
name.familyName LastName
name.givenName FirstName
name.middleName MiddleName
nickName NickName
phoneNumbers[].value MobilePhoneNumber
roles.value EmployeeUserBusinessRoleAssignment.BusinessRoleID
timezone TimeZoneCode
userName UserID
Table 353: SAPC4CIdentityBusinessRoles to SCIM Role mapping
SCIM properties SAPC4C properties
id ObjectID
name Name
meta.created CreationDateTime
meta.lastModified EntityLastChangedOn

 

Connector limitations

  • Update is not supported for attributes like ManagerName, CompanyName and Department, as they come under Organization endpoints.

  • Deleting a User, will inactivate it. But the user will still be present in the list of users.

  • Due to the target API behavior, any text value can be used as the value for phoneNumbers.

  • For most of the error scenarios, the status code returned is 500.

  • While user creation, the user will still be created if there is an error while user role assignments.

  • Due to One IM limitation on DateTime attributes, value having 'YEAR' less than 1753 could not be shown in One IM user interface.

Mappings

SAP Cloud for Customer (C4C) is a cloud solution to manage customer sales, customer service and marketing activities efficiently and is one of the key SAP solution to manage customer relationship.

Supervisor configuration parameters

To configure the connector, following parameters are required:

Supported objects and operations

Users

Table 350: Supported operations for Users

Operation

VERB

Create User POST

Get a User

GET

List Users

GET

Update a User

PUT

Delete User

DELETE

Roles

Table 351: Supported operations for Roles

Operation

VERB

Get a Role

GET

List Roles

GET

Mandatory fields

Users

  • name.givenName

  • name.familyName

Table 352: SAPC4CEmployee,BusinessUser to SCIM User mapping
SCIM properties SAPC4C properties
active EmployeeValidityEndDate
addresses[].country CountryCode
addresses[].postalCode PostalCode
addresses[].region RegionCode
addresses[].streetAddress Street
displayName FirstName + " " + LastName
emails[].value Email

extension.businessUserLanguageCode

LogonLanguageCode

extension.businessUserLanguage

LogonLanguageCodeText

extension.companyName CompanyName
extension.dateFormat DateFormat
extension.dateFormatCode DateFormatCode
extension.decimalFormatCode DecimalFormatCode
extension.department Department
extension.employeeId EmployeeID
extension.gender GenderCodeText
extension.genderCode GenderCode
extension.employeeLanguage LanguageCodeText
extension.employeeLanguageCode LanguageCode
extension.managerName ManagerName
extension.maritalStatus MaritalStatusCodeText
extension.maritalStatusCode MaritalStatusCode
extension.passwordPolicyCode PasswordPolicyCode
extension.timeFormat TimeFormat
extension.timeFormatCode TimeFormatCode
extension.titleCode TitleCode
extension.titleCodeText TitleCodeText
extension.userId UserID
extension.userLockedIndicator UserLockedIndicator

extension.validityEndDate

UserValidityEndDate

extension.validityStartDate

UserValidityStartDate

id ObjectID
meta.created CreatedOn
meta.lastModified EntityLastChangedOn
name.familyName LastName
name.givenName FirstName
name.middleName MiddleName
nickName NickName
phoneNumbers[].value MobilePhoneNumber
roles.value EmployeeUserBusinessRoleAssignment.BusinessRoleID
timezone TimeZoneCode
userName UserID
Table 353: SAPC4CIdentityBusinessRoles to SCIM Role mapping
SCIM properties SAPC4C properties
id ObjectID
name Name
meta.created CreationDateTime
meta.lastModified EntityLastChangedOn

 

Connector limitations

  • Update is not supported for attributes like ManagerName, CompanyName and Department, as they come under Organization endpoints.

  • Deleting a User, will inactivate it. But the user will still be present in the list of users.

  • Due to the target API behavior, any text value can be used as the value for phoneNumbers.

  • For most of the error scenarios, the status code returned is 500.

  • While user creation, the user will still be created if there is an error while user role assignments.

  • Due to One IM limitation on DateTime attributes, value having 'YEAR' less than 1753 could not be shown in One IM user interface.

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating