Presentation is loading. Please wait.

Presentation is loading. Please wait.

Prime Service Catalog 12.0 Integration Best Practices – LDAP and SAML Settings.

Published byHoratio Hudson Modified over 6 years ago

Similar presentations

Presentation on theme: "Prime Service Catalog 12.0 Integration Best Practices – LDAP and SAML Settings."— Presentation transcript:

1 Prime Service Catalog 12.0 Integration Best Practices – LDAP and SAML Settings

2 Overview This guide details the prerequisite settings necessary to avoid certain issues that may arise when integrating Prime Service Catalog with UCS Director and/or Cloud Center. Configuration included are: Prime Service Catalog + UCS Director – both connected to same LDAP Prime Service Catalog connected to LDAP + UCS Director not connected to LDAP Prime Service Catalog + UCS Director connected to LDAP – Cloud Center integrated later Prime Service Catalog + Cloud Center + SAML + IDP Prime Service Catalog + Cloud Center + SAML + IDP – UCS Director integrated later

3 Prime Service Catalog + UCS Director – both connected to same LDAP
Issue: At default, UCS Director imports the user with domain name appended to the login name (Example: user name cloudadmin is imported as and Prime Service Catalog imports the user without in the username. This results in duplicate user accounts created in Prime Service Catalog and causes permission issue. Solution: Ensure the following: When integrating UCS Director, do not check the Sync User with IaaS check box on the Configure Integration screen so users and groups are imported from UCS Director. Go to Administration module > Directories tab > Mappings and map the Login ID and Person Identification attributes to userPrincipalName.

4 Prime Service Catalog connected to LDAP + UCS Director not connected to LDAP
To enable Prime Service Catalog users to order UCS Director services, ensure the following: When integrating UCS Director, check the Sync User with IaaS check box on the Configure Integration screen so users and groups are not imported from UCS Director. Users are imported on login event from LDAP mapping. In Organizational Designer in Prime Service Catalog, define a group for each UCS Director group (Example: In Prime Service Catalog, if the Identifier as UCD on the Configure Integration screen, the group name should be UCSD::UCD::<Group name from UCSD>. Map all the users into one the appropriate groups created.

5 Prime Service Catalog + UCS Director connected to LDAP – Cloud Center integrated later
Issue: Cloud Center does not support LDAP integration. Solution: Ensure the following: Prime Service Catalog and USC Director are integrated according to the prerequisites found earlier in this guide. In Prime Service Catalog, create a team or join team by using Team Management so the users will be pushed to Cloud Center. If not creating or joining team using Team Management, when ordering of Cloud Center application profiles the system uses CliqrAdmin credentials.

6 Prime Service Catalog + Cloud Center + SAML + IDP
Issue: Prime Service Catalog and Cloud Center are both connected to the same SAML IDP. Solution: Ensure the following: In Cloud Center, do not enable the Import Person on login event from IDP. In Prime Service Catalog, enable the Import Person on login event from IDP. Prime Service Catalog, create a team or join team by using Team Management so the users will be pushed to Cloud Center. If not creating or joining team using Team Management, when ordering of Cloud Center application profiles the system uses CliqrAdmin credentials.

7 Prime Service Catalog + Cloud Center + SAML + IDP – UCS Director integrated later
Issue: Integrating UCS Director with previously integrated Prime Service Catalog Cloud Center connected to the same SAML IDP Solution: Ensure the following: In Cloud Center, do not enable the Import Person on login event from IDP. In Prime Service Catalog, enable the Import Person on login event from IDP. Prime Service Catalog, create a team or join team by using Team Management so the users will be pushed to Cloud Center. If not creating or joining team using Team Management, when ordering of Cloud Center application profiles the system uses CliqrAdmin credentials. When integrating UCS Director, do not check Sync User with IaaS on the Configure Integration screen so users and groups are not imported from UCS Director. Users are imported on login event from LDAP mapping. In Organizational Designer in Prime Service Catalog, define a group for each UCS Director group (Example: In Prime Service Catalog, if the Identifier as UCD on the Configure Integration screen, the group name should be UCSD::UCD::<Group name from UCSD>. Map all the users into one the appropriate groups created.

8

Download ppt "Prime Service Catalog 12.0 Integration Best Practices – LDAP and SAML Settings."

Similar presentations

Managing Your Organisation’s Portal Team Account Tutorial 7.

Managing Your Organisation’s Portal Team Account Tutorial 7.
Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.

Module 6: Configuring Windows XP Professional to Operate in a Microsoft Network.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
Unauthorized Reproduction Prohibited SkyPoint Alarm Integration Add-On Using OnGuard Alarms to create events in SkyPoint Also called ‘SkyPoint V0’ CR4400.

Unauthorized Reproduction Prohibited SkyPoint Alarm Integration Add-On Using OnGuard Alarms to create events in SkyPoint Also called ‘SkyPoint V0’ CR4400.
User Management DigiTool Version 3.0. User Management 2 User Architecture PatronsStaff Users DepositorsApprovers Meditor User Management Management Module.

User Management DigiTool Version 3.0. User Management 2 User Architecture PatronsStaff Users DepositorsApprovers Meditor User Management Management Module.
15.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

15.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
SecurityCenter & Palo Alto Configuration Guide. About this Guide This guide provides an overview of how to get the most from Palo Alto firewalls when.

SecurityCenter & Palo Alto Configuration Guide. About this Guide This guide provides an overview of how to get the most from Palo Alto firewalls when.
LDS Account and the Java Stack. Disclaimer This is a training NOT a presentation. – Be prepared to learn and participate in labs Please ask questions.

LDS Account and the Java Stack. Disclaimer This is a training NOT a presentation. – Be prepared to learn and participate in labs Please ask questions.
Understanding Active Directory

Understanding Active Directory
Senior Technical Writer

Senior Technical Writer
Guide to MCSE 70-290, Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.

Guide to MCSE , Enhanced 1 Activity 10-1: Restarting Windows Server 2003 Objective: to restart Windows Server 2003 Start  Shut Down  Restart Configure.
03/07/08 © 2008 DSR and LDAP Authentication Avocent Technical Support.

03/07/08 © 2008 DSR and LDAP Authentication Avocent Technical Support.
Purpose Intended Audience and Presenter Contents Proposed Presentation Length Intended audience is all distributor partners and VARs Content may be customized.

Purpose Intended Audience and Presenter Contents Proposed Presentation Length Intended audience is all distributor partners and VARs Content may be customized.
CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+

CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.

Module 10: Configuring Windows XP Professional to Operate in Microsoft Networks.
Enterprise Service Desk (ESD) Enterprise Service Desk Approvers and SDR Overview.

Enterprise Service Desk (ESD) Enterprise Service Desk Approvers and SDR Overview.
RMsis – v 1.7.0 Simplify Requirement Management for JIRA.

RMsis – v Simplify Requirement Management for JIRA.
COMPDIRS NATHAN DORS APRIL 16, 2015. AGENDA  IAM – who we are, what we do  HRP Modernization & Workday  What’s new in IAM?  Identity.UW soft.

COMPDIRS NATHAN DORS APRIL 16, AGENDA  IAM – who we are, what we do  HRP Modernization & Workday  What’s new in IAM?  Identity.UW soft.
Shibboleth 2.0 IdP Training: Authentication January, 2009.

Shibboleth 2.0 IdP Training: Authentication January, 2009.
Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Empowering people-centric IT Unified device management Access and information protection Desktop Virtualization Hybrid Identity.

Similar presentations

Ads by Google