You can synchronize SaaS systems with your Oomnitza instance by using login and integration information from your single sign-on (SSO) identity provider.
As well as retrieving a list of SaaS systems and SaaS users, the synced systems can be associated with contracts. You can gain greater insights into SaaS usage, seat availability, and user activity. Based on the analysis of the SaaS activity information, you can budget better and determine whether you can save costs by unsubscribing users from SaaS systems.
Before you start
Learn about the steps that you need to complete and the best practices for SaaS management integrations.
Refer to our SaaS management integration articles for information on details on our available SaaS management integrations and how to configure them.
Provide your connection credentials or select them from the Oomnitza vault.
Look back synchronization
This is the period of time that your SSO IdP stores information about your SaaS system's usage activity. For Azure Active Directory, the synchronization is fixed to the default directory synchronization of 30 days.
Default user role
The Oomnitza role that is assigned when the SSO loads a user that doesn't currently exist in Oomnitza. The new user is added and assigned the role that you specified.
Username format or Name identifier
The username format determines how a new user's username is structured. The username serves as the primary identifier for the user.
Restrict Access to Oomnitza
Select if you don't want the users to log in to Oomnitza.
Supply a dedicated integration user to facilitate tracking changes made during Oomnitza's synchronization with the SaaS Management Integration. When you add a dedicated integration user, you gain enhanced visibility into the syncing process. If an integration user isn’t specified, the integration user is set to firstname.lastname@example.org.
- Click Configuration > Integrations.
- Click Block view .
- In the SaaS Management Integrations section, click the SSO identity provider.
- Click Connect. Enter the credentials for your SSO IdP.
- When you confirm the settings and create a schedule, click Finish to activate the integration with the SSO provider.
You can set up more than one managed integration. For example, when you transition from one managed integration to another, you might need to run managed integrations or two or more IdPs. To minimize the workload when you run more than one managed integration, run each managed integration at a different time.