Configuration Requirements #
- Customer will need to have the SFTP folder available on their side.
- Customer needs to provide a User ID and Password so SecurEnds can configure the tool.
- Customer will need to go into the SecurEnds tool and update the SFTP credentials if the customer have a security policy which requires password rotation every X days.
- Customer will need to maintain a static file name for the file placed in the SFTP folder.
App Creation in SecurEnds Tool #
- In the Admin Console, go to Applications.
- Click the Add button next to it to begin configuration.
Setup Application #
- Select Data Ingestion method as Flex Connector.
- Enter application Name.
- Enter the Application Owner email information.
- Agent is software that needs to be installed on your on premise environment to pull data from applications such as Active Directory, Database and Custom Applications.
- Select Yes if you have an Agent Software installed
- Select No if you don’t have any agent software installed
- Select Match By logic as Default(Email or FirstName and LastName) or Employee Id
- If we select Default(Email or FirstName and LastName) the system will match the user with Email or First Name and Last Name while syncing
- If we select Employee Id the system will only match the Employee ID while syncing
- Select Include Inactive Users to fetch all users while sync
- If we select Yes all the Active status users along with Disabled status users will be added in the Matched users for AWS.
- If we select No then only Active user will be added to the Matched users for AWS.
- Include Entitlements Enabled as Yes to load the entitlements on application while syncing.
Configure Application #
- Search Connector in Featured Integrations and select SFTP/FTP.
- Provide the “FTP Host” to login into the domain
- Example: sftp.securends.com
- Provide the “FTP Port”
- Example: 22
- Provide the “FTP UserName” to login into the domain
- Example: test-user
- Provide the “FTP Password”
- Example: Password
- Provide the “FTP File Location”
- Location Format: /filename.filetype or /inbound/filename.filetype
- Example: /SCM_SE_01_20190101.txt or /inbound/SCM_SE_01_20190101.txt
- Select the “Type”
- Select one from the drop down: SFTP/FTP
Note: Please use the SecurEnds provided SFTP Sample file, the headers should be same as the provided file with case sensitive.
- If needed, select “Custom Configuration” to manually map the FTP/SFTP file headers to the SecurEnds headers.
When you export the application data (Gear icon->More->Export), SecurEnds will export the data to a CSV format and will have mapped the data to SecurEnds attributes. Below are the mapping details
- Employee First Name – First Name
- Employee Middle Name – Middle Name
- Employee Last Name – Last Name
- Employee Email ID – Email
- Credential – Distinguished Name (Common Name will be a copy of Distinguished Name data)
- Manager Email ID – SOR Manager Email
- Employee Access Status – Access Status
- Employee ID – User Id
- Last Authentication Date – Last Authentication
- Role/Group/Permission – Entitlement DN (Entitlement CN will be a copy of Entitlement DN data)
- Role/Group/Permission Description – Entitlement Description
- Role Created Date – Entitlement Created Date
- Login Created Date – Credential Created Date
Note: If there are Purged Credentials or Purged entitlements as a result of the most recent sync of the application. Those are still present in the exported CSV data and will be denoted by a P within the Status and Entitlement Status attributes. You will want to exclude these from the CSV if you are just looking at data synced by from the applications. Status codes of E (Excluded) and D (Deleted) are valid records from your application, the SecurEnds Admin has simply chosen to classify these records respectively through an earlier action.
Ticketing System Configuration #
For more information on Ticketing System Configuration, Click here.
Click Save once finished to add the connector.