Creating an extended integration for OneLogin users

Let Oomnitza be your single source of truth!

You'll get complete visibility of your users as data from OneLogin is automatically transformed into consumable information and actionable insights.

Connect Oomnitza and OneLogin in minutes

Get the information and insights that you need to reduce costs and the time that you spend on administration tasks such as:

• Configurable dashboards and list views of key user information
• Configurable reports to share information about users with your colleagues and management
• Configurable workflows that you can easily create such as: 
  • Onboarding and offboarding users
  • Retrieving SaaS user roles
  • Managing a user status, locking and logging out users as part of an offboarding workflow.
  • Creating and adjusting users as part of a user change or user onboarding workflow

Navigation

Creating the user integration

Creating custom mappings

Before you start

The OneLogin User Load uses the List Users API, which returns a paginated list of users in a OneLogin account.

Before you can create the integration with Oomnitza, you need to have added your OneLogin credentials to Oomnitza.

Creating the user integration

1. In Oomnitza, click Configuration > Integrations > Overview.
2. Click Block view .
3. On the Integrations page, scroll down to the Extended section for user integrations.
4. Click NEW INTEGRATION.
5. In the sidebar, search for the integration.
6. Click ADD.

Integration details overview

More information is provided about the following fields to help you complete the integration:

• User only. Add user records.
• User plus SaaS user. Add user and SaaS user records. 

The benefit of adding SaaS user records is that you can run a workflow to validate the status and activity of SaaS users and retrieve information such as the role of the SaaS user. The information that can be retrieved depends on whether SaaS user workflows are available for the integration. 

Installation types

• Cloud. Store credentials in the Oomnitza cloud.
• Local. Store credentials locally. If you want to sync Oomnitza with vendor applications that require AWS or OAUTH authentication, select cloud as the type of installation. Local installations don't support AWS and OAuth authentication. 

Integration preferences

• Create & Update. Add and update records.
• Create only. Add records.
• Update only. Update records.

Editing the integration details

1. Click Edit .
2. Make your changes.

Editing the credential details

If you selected Cloud as the installation type, choose one of the following options:

• Select the credentials that were created for the integration.
• Edit the credentials that were created for the integration.
• Create new credentials

Scheduling the integration

By default, data is synced once every day. Change the interval or the time so that the data is streamed when your system isn't busy.

1. Click Edit .
2. Make and save your changes.

Mapping fields to Oomnitza

To map the fields to Oomnitza, click Edit .

  Selecting Edit integration to add rules for syncing data. Filtering integration results.  
 

You can add new fields to your integration by selecting Add new field   on the mapping page. 
Creating custom API fields. 

Creating custom mappings

Map the OneLogin fields to Oomnitza fields and create custom mappings to get the user information that you need.

Complete these actions:

1. Click Smart Mapping to automatically detect appropriate mapping fields. Values from the integration can also be dragged to the appropriate field on the Oomnitza side, or selected from the integration field dropdown.
2. Create a custom mapping for the OneLogin User ID. To do this, complete these steps:
   1. Click the down arrow on the OneLogin User ID field.
   2. Select Add new Oomnitza users field.
   3. Change the name of the new field to OneLogin User ID. 
   4. Select the Unique checkbox.
   5. Click CREATE. 
3. Ensure that the Email is mapped to the Email field on the Oomnitza side (required for integration).
4. Ensure that the Username is mapped to the Username field on the Oomnitza side (required for integration).
5. Select the Role field on the Oomnitza mapping side.
6. Choose a suitable role from the list (a defined role is necessary for the integration)
7. Assign a sync key to a unique field, such as the Email.
8. Click UPDATE.

Standard mappings

The following OneLogin fields can be mapped to Oomnitza:

Activated At
Comment
Company
Created At
Department
Directory ID
Distinguished Name
Email
*External ID
First Name
Group ID
ID
Invalid Login Attempts
Invitation Sent At
Last Login
Last Name
Locked Until
Manager AD ID
Manager User ID
Member Of
Password Changed At
Phone
Preferred Locale Code
SAMAccountName
State
Status
Title
Trusted Idp ID
Updated At
User Principal Name
*Username

*The above values may not be populated in your account and may return as null. If this is the case, you could map the Email to the Username field in Oomnitza.

Launching the integration

Your integration is in Draft mode until the required mandatory fields are added. When added, click Launch to activate your integration. 

If you selected Cloud as the installation type when creating the integration, see Running an extended integration

If you selected Local as the installation type when creating the integration, see Running an extended integration locally.

Viewing data ingested by Oomnitza

Viewing ingested asset data

For asset integrations, click Hardware. If the asset integration also ingests software data, click Software.

Viewing ingested user data

For user integrations, click People. If you chose the option to ingest User and SaaS user data, click Software > SaaS, click the SaaS app, and then click the Users tab. 

Related Links

Unleash the power of Oomnitza

To get valuable actionable insights that help you manage your assets, learn how to:

• Configure dashboards for your users and software
• Configure custom reports about your users and software
• Create workflows to automate tasks

See Getting started for more information.