Chat now with support
Chat mit Support

One Identity Starling Hosted - User Guide

Managing Azure Active Directories

The Directories option on the Settings page allows organization administrators to register an Azure Active Directory instance with Starling to allow services to read users and groups from the directory.

To register and manage an Azure Active Directory instance for use with Starling services

IMPORTANT: You must have the Global Admin role in Azure Active Directory in order to register it as a directory service within Starling.

  1. From the Starling home page, click the button in the upper right corner.

  2. In the Directory Services section of the Settings page, locate Directories and click Manage.

  3. On the Manage Directories page, click Register Directory.

  4. On the Register Directory pane, select Azure Active Directory.

  5. Fill in the following Configuration fields:

    • Display Name: Enter a name for the directory.

    • Directory/Tenant ID: Enter the directory/tenant ID for the Azure Active Directory instance you are registering.

  6. Click Give Consent.

  7. You will be redirected to login to Azure Active Directory using your Global Admin account. Once logged in, read through the permissions and if you agree click Accept. You will be returned to Starling with the Azure Active Directory instance listed as registered.

    To make changes, click the tile of the directory to be edited. You will need to renew consent should you make any changes to the configuration. To remove the directory, select Delete from the Options drop-down.

Managing OneLogin Directories

The Directories option on the Settings page allows organization administrators to register an OneLogin Directory instance with Starling to allow services to read users and groups from the directory.

To register and manage a OneLogin Directory instance for use with Starling services

  1. From the Starling home page, click the button in the upper right corner.

  2. In the Directory Services section of the Settings page, locate Directories and click Manage.

  3. On the Manage Directories page, click Register Directory.

  4. On the Register Directory pane, select OneLogin.

  5. Fill in the following Configuration fields:

    • Display Name: Enter a name for the directory.

    • Tenant Hostname: Enter the tenant hostname for the OneLogin Directory instance you are registering.

      NOTE: The value given for Tenant Hostname must match the value given for Display Name.

  6. Fill in the following API Access Credentials fields:

    • Client ID: Enter the Client ID of the API credential you have created for integrating with Starling.

    • Client Secret: Enter the Client Secret of the API credential you have created for integrating with Starling.

      NOTE: To create an API credential in OneLogin, navigate to the OneLogin site > API Credentials > Developers > New Credential.

  7. Fill in the following Application Credentials fields:

    • Client ID: Enter the Client ID of the application you have created for integrating with Starling.

    • Client Secret: Enter the Client Secret of the application you have created for integrating with Starling.

      NOTE: To get you Client ID and Client Secret from your OneLogin Application, navigate to OneLogin Site > Applications > Applications > <application-name> > SSO.

  8. Click Register.

Applications

The Applications option on the Settings page allows you to add an application to create a relying party trust that allows directory users to authenticate and use the target application.

There are 2 methods for adding applications:

  • Manually configure the application.

  • Upload SAML2 Metadata for the application.

Joined Products

The Joined Products option on the Settings page allows you to view and manage the One Identity products currently joined to your Starling organization.

To delete a joined product

CAUTION: This feature is only intended to be used in rare cases (for example, deleting an uninstalled One Identity product that was not first unjoined from Starling). When using this feature, you are only deleting the Starling side of the connection which means an active One Identity product may still attempt to connect. If at all possible, you should use the unjoin option from within the One Identity Product instead since it will correctly disconnect both products.

  1. From the Starling home page, click the button in the upper right corner.
  2. In the Joined Products section of the Settings page, click Manage.
  3. On the Manage Joined Products page, locate the product instance to be removed.
  4. Click Delete.
  5. A confirmation dialog will appear warning you of the potential issues with removing a joined product from within Starling instead of through the product itself. Click Delete to remove the joined product.
Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen