- Overview
- Configuration
Sentry
Simplify Sentry User Access Management with ADManager Plus Integration
Sentry is a leading application performance monitoring platform that helps identify and resolve errors across both backend and frontend application code. Integrating ADManager Plus with Sentry streamlines user access management across AD, Exchange, and Microsoft365. By automating user onboarding and access control processes within Sentry, this integration eliminates the need for manual permission management. As a result, organizations benefit from improved operational efficiency and a strengthened security posture, ensuring that access control policies are consistently and reliably enforced across the entire system.
Automate user provisioning
Instantly synchronize user creation, updates, and deprovisioning in Sentry based on real-time modifications to security groups and user attributes in your AD and other enterprise applications.
Enhanced security and access control
Enhance security by ensuring that access rights in Sentry are always in sync with an employee's current role and responsibilities.
How to integrate ADManager Plus and Sentry
Prerequisites:
Please ensure to provide the bearer token to retrieve desired information and perform tasks in Sentry. Refer to Sentry API references for more details.
Privileges:
- To import users (inbound action): Ensure the account used for authorization has permission to read all user accounts.
- To perform any action or query in Sentry (outbound action): Ensure the account used for authorization has permission to perform the desired action.
Authorization configuration
- Log in to ADManager Plus and navigate to the Automation tab.
- In the left pane, under Configuration, click Application Integrations.
- Under Enterprise Applications, click Sentry.
- Toggle the Enable Sentry Integration button on.
- In the Sentry Configuration page click Authorization.
- Perform the steps to generate Bearer token in Sentry and paste the Bearer token in the Value field.
- Click Configure.
Inbound webhook configuration
Inbound webhook enables you to fetch user data from Sentry to ADManager Plus. The attribute mapping configured in this section can be selected as the data source during automation configuration.
To configure an inbound webhook for Sentry:
- Under Inbound Webhook, click Sentry Endpoint Configuration.
- In the Endpoint Configuration tab, an endpoint, Sentry USERS ENDPOINT, comes pre-configured with an Endpoint URL, API Method, Headers, and Parameters fields to fetch user accounts from Sentry. If you would like to use this preconfigured endpoint, replace {organization_slug} and {project_slug} that of your Sentry instance in the Endpoint URL field. However, if you would like to use a new endpoint to import users, you can configure one using the + Add API endpoint button and filling in the required fields as per Sentry's API references. Click here to learn how.
- The API key value pair is preconfigured as a header for authenticating API requests as configured during authorization configuration.
- Macros: You can add macros to your endpoint configuration to dynamically change it as per your requirements using the macro chooser component.
- Refer to Sentry's API references and configure additional headers and parameters, if required.
- Once done, click Test & Save. A response window will display all the requested parameters that can be fetched using the API call. Click Proceed.
- Refer to Sentry's API references to know the Parameters that must be configured to fetch only specific parameters.
- You can configure multiple endpoints for Sentry using the + Add API endpoint button. Click here to learn how.
- Click Data Source - LDAP Attribute Mapping to match endpoints and to map AD LDAP attributes with the respective attributes in Sentry.
- Click + Add New Configuration and perform the following:
- Enter the Configuration Name and Description and select the Automation Category from the drop-down menu.
- In the Select Endpoint field, select the desired endpoint and a Primary Key that is unique to a user (e.g. employeeIdentifier). Note: When multiple endpoints are configured, this attribute must hold the same value in all the endpoints.
- In the Attribute Mapping field, select the attribute from the LDAP Attribute Name drop-down menu and map it with the respective attribute in Sentry.
- If you would like to create a new custom format for this, click Add New Format.
- Click Save.
Note:
Note:
Outbound webhook configuration
Outbound webhook enables you to send changes made in AD to Sentry, and carry out tasks in Sentry—all from ADManager Plus. The webhooks configured in this section can be included in Orchestration Templates, which in turn can be used during event-driven and scheduled automations. They can also be applied directly on desired users to perform a sequence of actions on them (Management > Advanced Management > Orchestration).
To configure outbound webhooks for Sentry:
- Under Outbound Webhook, click Sentry Webhook Configuration.
- Click + Add Webhook.
- Enter a name and description for this webhook.
- Decide on the action that has to be performed and refer to Sentry's API references for the API details such as URL, and the headers, parameters, and other requirements that will be needed.
- Select the HTTP method that will enable you to perform the desired action on the endpoint from the drop-down menu.
- Enter the endpoint URL.
- Configure the Headers, Parameters, and Message Type in the appropriate format based on the API call that you would like to perform.
- Click Test and Save.
- A pop-up window will then display a list of AD users and groups to test the configured API call. Select the desired user or group over which this API request has to be tested and click OK. This will make a real time call to the endpoint URL, and the selected objects' will be modified as per the configuration.
- The webhook response and request details will then be displayed. Verify them for the expected API behavior and click Save.