Skip to main content
Sign in

Creating workflows for Duo Security SaaS users

  • November 05, 2023 12:15
  • Updated

Let Oomnitza be your single source of truth!

You'll get visibility of your SaaS users as data from Duo Security is automatically transformed into consumable information and actionable insights.

Connect Oomnitza and Duo Security in minutes

Get the information and insights that you need by creating configurable workflows for getting a SaaS user's last login activity, enabling you to identify accounts that are underutilized or that can be canceled

Before you start

Before you can create workflows you need to have added your Duo Security credentials to Oomnitza.

In addition, you should have already run your extended user integration and selected User plus SaaS User to populate the software entry in the Software > SaaS menu.

Related Links

small_blue_link.svgAdding your Duo Security credentials to Oomnitza

small_blue_link.svgCreating an extended integration for Duo Security users

About

The Duo Security SaaS User Role and the Duo Security Federal Edition SaaS User Role presets supply you with the last login date of your SaaS users. The presets are essentially the same, except for the variation in the API request URLs.

The Duo Security Federal Edition SaaS User Role uses the duofederal.com URL in requests. For the Domain, you must supply the hex value of your Duo Security Federal subdomain. For example, if your URL is https://123.duofederal.com you need to supply 123

The Duo Security SaaS User Role permits the use of the duofederal.com or duosecurity.com URL in requests. For the Domain, you must supply the hex value of your Duo Security subdomain and the domain, for example, 123.duosecurity or 123.duofederal. For example, if your URL is https://123.duosecurity.com you need to supply 123.duosecurity.

To save time entering information when you create the workflows, you can add your domains as a global variable in Oomnitza. See Creating an extended integration for Duo Security users

Creating the workflows

To create workflows using the Duo Security User Role presets, complete the following steps:

  1. Click Configuration > Workflows 
  2. Click Add (+) and select Software SaaS Users from the list.
  3. Enter the name and a description of the workflow. 
  4. Edit the Begin block by adding the rules that will trigger the workflow. For further information see SaaS User Roles.
  5. Click the Blocks tab, and drag and drop the SaaS User Role retrieval block onto the canvas.
  6. Click the Edit icon.
  7. Enter Duo Security in the search field and choose either the Duo Security SaaS User Role or the Duo Security Federal Edition SaaS User Role preset.
  8. Click the right arrow >.
  9. Select your Credentials from the list.
  10. Select the Deactivate User checkbox to deactivate the SaaS user in SaaS > Duo Security > Users if they are flagged as "Disabled" in Duo Security.
  11. Click SAVE.
  12. Connect the blocks.
  13. Save, validate, and activate your workflow.

To view active Duo Security users in the SaaS Users UI, complete the following steps:

  1. Click Software from the menu.
  2. Select the SaaS tab, and select your software entry for Duo Security.
  3. Click Users in the side pane.
  4. The Last activity column will be populated with the user details to confirm that this user has been found in your Duo Security SaaS.           

small_blue_link.svgDuo Admin API: Retrieve User by ID.

Reference articles for creating workflows

Related articles

Comments

0 comments

Please sign in to leave a comment.