Skip to main content

Preparation

Before targeting Imprivata OneSign, set up:

  1. A target system administrator on the OneSign SSO server

  2. SSL (optional)

  3. A provisioning system adaptor

Setting up a target system administrator

Bravura Security Fabric uses a designated account on Imprivata OneSign to perform Bravura Security Fabric operations. The target system administrator must be a domain user on the OneSign application with the Super Administrator role.

Setting up SSL

You can configure the Imprivata OneSign connector so all connections are made over SSL. Enable OneSign to use SSL by navigating to SSO > Provisioning > Security on the OneSign application’s administration page.

Setting up a provisioning system adaptor

Set up a provisioning system adaptor to allow the agtimprivata connector to submit SPML requests to OneSign in order to update passwords.

  1. Go to the Imprivata administrator page.

  2. Make sure that the application to be managed is listed on the SSO > Applications page.

  3. Navigate to SSO > Provisioning to add a provisioning adaptor.

    • Include the host name or IP where the agent is going to run.

    • Add the mapping of the external domain name to the internal domain name. The external domain name is going to be used in the target system address.

    • Add an external application name that maps into an internal application name. The external application name will be used in the address line’s apps part.

See the Imprivata OneSign SSO documentation at https://<imprivata-server>/sso/Docs/SSO_Guide.pdf

In this section: