PingOne

Creating an Aquera connection

Use an Aquera provisioning connection to provision PingOne identities to an Aquera user store.

Before you begin

We recommend that you review the information about creating users in Aquera. For more information, see the Aquera User Guide.

Steps

  1. Go to Integrations → Provisioning.

  2. Click and then click New connection.

  3. For Identity Store, click the Select button.

  4. Under Aquera, click Select and then click Next.

  5. Enter a name and description for this provisioning connection. The connection name will appear in the list when you’ve completed and saved the connection.

  6. Click Next.

  7. On the Configure authentication screen, enter the following:

    • Aquera SCIM URL. The fully qualified URL to use for the SCIM resources, such as https://api.aquera.io/scim/. You can find this information on your Aquera Applications page.

    • Connection profile. Select the authentication method to use: Basic Auth or Bearer Token. Additional fields are displayed, depending on the selected method.

      The type of authentication to use is determined by the target SaaS application configured in Aquera. When you set up an application in Aquera, you might be constrained by the authentication methods supported by a particular application. For example, certain applications might support OAuth tokens only, while others might support basic authentication only.

    • Basic Auth

      • Basic Auth User. The user name for the target SaaS application in Aquera. The user name is configured during the application setup in Aquera.

      • Basic Auth Password. The password for the target SaaS application in Aquera. The password is configured during the application setup in Aquera.

    • Bearer token

      • OAuth Access Token. Enter the OAuth access token value for the target SaaS application in Aquera.

  8. Click Test connection to verify that PingOne can establish a connection to Aquera.

    Result:

    If there are any issues with the connection, a Test Connection Failed dialog box opens. Click Continue to resume the setup with an invalid connection.

    You cannot use the connection for provisioning until you have established a valid connection to Aquera. To retry, click Cancel in the Test Connection Failed dialog box and repeat step 7.

    Troubleshooting:

    Learn more about troubleshooting your connection in Troubleshooting Test Connections Failure.

  9. On the Configure preferences screen, enter the following:

    • Allow users to be created. Determines whether to create a user in the target identity store when the user is created in the source identity store.

    • Allow users to be updated. Determines whether to update user attributes in the target identity store when the user is updated in the source identity store.

    • Allow users to be disabled. Determines whether to disable a user in the target identity store when the user is disabled in the source identity store.

    • Remove action. Select Delete or Disable. Determines whether to remove or disable a user in the target identity store when the user is deleted in the source identity store.

    • Deprovision on rule deletion. Determines whether to deprovision users if the associated provisioning rule is deleted.

  10. Click Finish.

Result

The Aquera provisioning connection is complete and is added to the list of provisioning connections on the Provisioning page.

Next steps

To define which users are provisioned and how attributes are mapped between PingOne and an external identity store, follow the instructions in Creating an outbound rule.