Content
Preparing for SAML
Throughout our implementation when talking about the creation of new users, we always make sure you double check usernames so that any new users created have the exact username as it appears in your Active Directory. The consequences of not doing so would risk users duplication at the time SAML is turned on.
Now that we are ready to turn on SAML it is time to do one last check, below are instructions on what to do.
- Run a report to export a list of all users currently in Policy Manager. To do that follow the instructions at the end of this document.
- Export a list of usernames from your Active Directory.
- Compare the usernames column in the PolicyManager™ report to the list of usernames from your active directory to identify any inconsistencies.
- Note: You will notice that most of the users in PM have an “@tag” at the end of the usernames. That DOES need to be there but don’t worry about it, when comparing lists for inconsistencies ignore that tag.
- This is CASE SENSITIVE so please take that into account when comparing usernames.
- Fix any username inconsistencies you find in PolicyManager™.
We would also like a copy of your Active Directory list of usernames so we can do our own check just to be sure.
This all needs to be done before we enable SAML. Also, we recommend an IT representative along with one System Administrator to work on this.
RUNNING REGISTERED USER REPORT
Under reports on the top right, navigate to System Administration Reports and click on ‘Registered User Listing’.
When the following screen pops up, select the all departments checkbox at the top-right and click Run Report.
After running the report click the Excel icon at the top-right of the table to export it to Excel.
Comments
0 comments
Article is closed for comments.