Skip to main content

SAP Concur

Connector name

agtconcur

Connector type

Executable

Type (UI field value)

Concur

Connector status / support

Customer-Verified

Clients may contact Bravura Security support for assistance with this connector. Troubleshooting and testing must be completed in the client's test environment as Bravura Security does not maintain internal test environments for the associated target system.

The following Bravura Security Fabric operations are supported by this connector (depending on your product license and version):

  • administrator reset password

  • create account

  • get server information

  • list account attributes

For a full list and explanation of each connector operation, see connector operations.

Preparation

Before you can target Concur services, you must:

  1. Set up a target system administrator.

  2. Create at least one template account.

  3. Ensure that the psadmin account on the Bravura Security Fabric server can access the Concur Expense and Invoice site via https.

Setting up a target system administrator

Bravura Security Fabric uses a designated account on Concur services to perform operations. Register with Concur to get an account with appropriate permissions.

Creating a template account

Bravura Security Fabric uses template accounts as models or "blueprints" for creating new accounts in Concur services. The following example illustrates how you can create a template account in Concur:

  1. As an administrator, use a browser to login to Concur, for example at concursolutions.com.

  2. In the upper right corner, click Administration.

  3. Click Users.

  4. Click Create/Edit User.

  5. Fill in the required fields:

    • Login (email address)

    • Password

    • First name

    • Last name

    • Country of residence

    • Employee Administration country

    • Expenses policy group

    • Reimbursement method

  6. Click Save.

Ensuring psadmin access

Ensure that the Bravura Security Fabric psadmin account can access Concur software via https:

  1. As psadmin, logon to the Bravura Security Fabric server.

  2. Use a browser to access Concur software via https (for example; https://www.concursolutions.com/ ) and add the site as a trusted site.

Targeting Concur services

For each Concur system, add a target system in Bravura Security Fabric (Manage the system > Resources > Target systems):

  • Type is Concur.

  • Address uses the following:

    Server Concur software site; default is www.concursolutions.com

    (key: server)

    Port Default is 443.

    (key: port)

    HTTP Network Proxy

    (key: proxy)

    Token (Consumer Key) Required

    (key: token)

    For example:

    {server=www.concursolutions.com; port=443; token=MiUMnMMMVh7MMpQm;}

The full list of target parameters is explained in Target System Options .

Handling account attributes

You can view the complete list of attributes that Bravura Security Fabric can manage, including native and pseudo-attributes, using the Manage the system (PSA) module. To do this, select Concur from the Manage the system > Resources > Account attributes > Target system type menu.

For information about the native Concur attributes managed by Bravura Security Fabric , consult your Concur documentation.

Note

By default, some custom account attributes are not populated by the template account. However, you can manually set these attributes to be populated by mapping them to profile attributes.

Limitations

  1. In general, user actions require the setting of all fields in a single command.

  2. Concur software does not support listing of users. In order to maintain the integrity and consistency between the Bravura Security Fabric database and Concur users, an intermediary storage target system must exist.

    Examples of intermediary targets:

    • A system that supports listing, such as a Microsoft Active Directory server, and that has a superset of the users containing every user using the Concur service.

    • A basic system acting as the store of the Concur users, such as a file-based ODBC target. Users must be created on both systems simultaneously.

    • A manually managed spreadsheet or list used to import users into Concur.

The output of the intermediary target must be formatted into the correct format. For Bravura Security Fabric 12.0.0 and higher this must be SQLite .db formt. Bravura Security Fabric versions earlier than 12.0.0 use .lst files with KVGroup format . The file should only contain existing and active Concur users. See Listing information from target systems for information about the format.

To use an intermediary target system with Concur:

  1. Configure Bravura Security Fabric to list users on the intermediary target system before the Concur target system, by clicking Maintenance > Auto discovery > Connector execution order . See Configuring parallel listing for more information.

  2. Create a psupdate_list_post script to generate the correctly formatted file for agtconcur before psupdate lists users on the Concur target system. See Controlling auto discovery using scripts for more information.

  1. Since Concur software does not support listing users, user attributes cannot be imported to the database.

  2. Group management is not supported by this target system. Implement user security levels by using different template accounts.

In this section: