e.g :
# Sometimes, we need to identify an “application” and corresponding “accounts” as something that
spans one or more applications.
# Take an example whereby a web application uses a specific entitlement in Active Directory to define membership in an application.
# Any user who has this specific Active Directory entitlement has an “account” on this application.
1. Create a new application type is Logical :
2. Navigate to Configuration, and in the Enter an application dropdown, choose TRAKK
and add it by selecting Add Tier. Select/confirm that Primary Tier is selected.
3. Click on Add Attribute. Here is where we will define what attribute (s) will need to be present for us to create an account for the logical application.
Name : capability
Value : input
click on save changes
4. Configure the schema for Logical Application :
Navigate to Configuration ---> Schema and configure the
a. Native Object Type: account
b. Identity Attribute: id
c. Display Attribute: username
d. Click Discover Schema Attributes to fill in the schema attributes from the TRAKK
application
e. Scroll down and Save the application
5. Create a task to aggregate accounts from the logical application:
Navigate Setup ---> Task --> New Task --->
a. Type : Account Aggregation
b. Name : Aggregate Logical Application
c. Select applications to scan : Logical Application – TRAKK
d. Detect deleted accounts : Checked
e. click on Save and Execute then click on Ok
f. check the Task Results
g. Navigate to Applications ---> Application Definition, select Logical Application –
TRAKK and choose the Accounts tab
------------------------------------------**********************-----------------------------------------
No comments:
Post a Comment