Configuring Just-in-Time (JIT) provisioning for AssetSonar
This guide details the steps to configure JIT provisioning between ManageEngine ADSelfService Plus and AssetSonar.
Prerequisite
SAML-based SSO must be configured to enable JIT provisioning. To learn how to configure SSO for AssetSonar, click here.
AssetSonar (Service Provider) configuration steps
- Log in to AssetSonar as an admin.
- Navigate to Settings → Add-Ons and select User Provisioning via SCIM.
- Click Enabled to configure SCIM-based user provisioning.
- Copy the value in Connector key field.
- Select Members created should be Login Enabled.
- Click Update.
ADSelfService Plus (Identity Provider) configuration steps
- Log in to ADSelfService Plus with administrator credentials.
- Navigate to Configuration > Self-Service > Password Sync/Single Sign On > Add Application, and select AssetSonar from the applications displayed.
Note: You can also find AssetSonar from the search bar located in the left pane or the alphabet wise navigation option in the right pane.
- Enter the Application Name and Description.
- Enter the Domain Name of your AssetSonar account. For example, if you use johndoe@thinktodaytech.com to log in to AssetSonar, then thinktodaytech.com is the domain name.
- In the Sub Domain field, enter the sub domain name of your AssetSonar account. For example, if your AssetSonar URL is https://xyzcorp.assetsonar.com, then xyzcorp is the sub domain name.
- In the Assign Policies field, choose the policies for which you want the application to be assigned.
Note: ADSelfService Plus enables you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration > Self-Service > Policy Configuration > Add New Policy.
- Click SCIM and select Enable Just-in-Time Provisioning.
- In the Connector Key field, paste the Connector key copied in Step 4.
- In the License Consumption Limit field, enter the maximum number of licenses you want to be consumed in this application. This will ensure that only the specified license count is used when creating user accounts in the application.If license consumption exceeds the specified limit, then the user account creation process is stopped.
Note:
- The license usage details will be visible when editing the application configuration.
- If a user already has an account in the application, their access attempt through ADSelfService Plus will also be counted towards the license count.
- Click Add Application.
You have now successfully configured JIT provisioning for AssetSonar. User accounts that do not exist in AssetSonar will be created automatically during SSO login.
Don't see what you're looking for?
-
Visit our community
Post your questions in the forum.
-
Request additional resources
Send us your requirements.
-
Need implementation assistance?
Try onboarding