PingOne for Enterprise

Adding Aquera to Your PingOne for Enterprise Dock

Add the Aquera application your PingOne for Enterprise dock from the application catalog.

About this task

This application enables outbound provisioning to various services through Aquera. It can also be used to configure SSO to the target service. See the configuration documentation for the target service for more information.

Steps

  1. In the PingOne for Enterprise admin console, go to Applications → Application Catalog.

  2. Optional: In the Search field, search for the application.

  3. Click the Aquera application line to expand it and then click Setup.

Next steps

Click Continue to Next Step.

Aquera Connection Configuration

Steps

  1. On the Connection Configuration form, select the Set Up Provisioning check box.

Next steps

Click Continue to Next Step.

Aquera Application Configuration

Before you begin

Before configuring the Application Configuration form, sign on to the Aquera admin console in a separate browser window.

Steps

  1. In the Aquera admin console, go to Applications.

  2. Click the application that you want to provision.

  3. Copy the URL in the Copy this URL field.

  4. In PingOne for Enterprise, paste the URL into the SCIM_URL field.

  5. In Aquera, from the Authorization field, copy the bearer token.

  6. In PingOne for Enterprise, paste the bearer token into the ACCESS_TOKEN field.

  7. Optional: In the BASIC_AUTH_USER and BASIC_AUTH_PASSWORD fields, enter the credentials for the administrator account of the service you’re provisioning.

    If you enter and save both the access token and the basic authorization credentials, only the access token is saved and used to authenticate.

  8. From the REMOVE_ACTION list, select the action you want Aquera to take when you delete or disable a user in PingOne for Enterprise.

    Choose from:

    • Select Disable to have Aquera disable a user that you’ve disabled or deleted in PingOne for Enterprise.

    • Select Delete to have Aquera delete a user that you’ve disabled deleted in PingOne for Enterprise.

Next steps

Click Continue to Next Step.

Aquera Attribute Mapping

About this task

For Aquera, the required attributes are SAML_SUBJECT and userName.

If you want to add additional attributes, Aquera supports provisioning for standard System for Cross-domain Identity Management (SCIM) attributes. For a list of SCIM attributes, see Supported attributes reference.

Aquera also supports custom provisioning attributes. When creating a custom attribute, use the IANUser prefix. For example, if you want to create a custom attribute for office location, call it IANUser:officeLocation and map it to IANUser:officeLocation.

Steps

  1. To add an additional optional attribute, click Add new attribute.

  2. In the Application Attribute field, enter the attribute name as it appears in the application.

  3. For custom attributes, select the Provisioning check box.

  4. In the Identity Bridge Attribute or Literal Value field, choose one of the following:

    Choose from:

    • Enter or select a directory attribute to map to the application attribute.

    • Select As Literal, then enter a literal value to assign to the application attribute.

  5. To create advanced attribute mappings, click Advanced.

    For more information, see Create advanced attribute mappings.

Next steps

Click Continue to Next Step.

Aquera Customization

Steps

  • To change the application icon, click Select image and upload a local image file.

    The image file must be:

    • PNG, GIF, or JPG format

    • 312 x 52 pixels maximum

    • 2 MB maximum file size

      Images are scaled to 64 x 64 pixels for display.

  • To change the name of the application displayed on the dock, in the Name field, enter a new name.

  • To change the description of the application, in the Description field, enter the new description text.

  • To change the category to which the application is assigned on the dock, in the Category list, select a category.

    For information about creating custom application categories, see Creating a custom application category.

Next steps

Click Continue to Next Step.

Aquera Group Access

About this task

The Group Access tab shows every user group that you have created.

For more information about creating user groups, see Add user groups.

Steps

  • To add a group’s access to the application, on the line for that group, click Add.

  • To remove a group’s access, on the line for that group, click Remove.

  • When you’re finished assigning groups, click Continue to Next Step.

Next steps

On the Review Setup tab, review your configuration, and click Finish to add the application to your PingOne for Enterprise Dock.