Datadog
This connectivity package provides support for managing users and roles in Datadog.
Supported objects and operations
| System objects | Omada Identity Data Model | Operations |
|---|---|---|
| Users | Account | Create, read, update, delete* |
| Roles | Resource | Read |
| Permissions | Resource | Read |
| Role memberships (users) | Resource Assignment | Create, read, update, delete |
| Group memberships (users) | Resource Assignment | Read |
(*) - disablement (account deletion is not supported by Datadog)
Minimum required permissions
The user owning the application key needs to have the Datadog admin role. See the Datadog API documentation for details.
Implementation notes
The Role objects are the primary managed resources in Datadog. Permissions act as children of the Role objects and are therefore imported as Resource parent/child objects.
The requestable and granted resources should be the Datadog Roles. Set prevent-self service to Yes on all DataDog Permission resources (there is also no task mapping included for the permission resource type).
Network requirements
N/A
Prerequisites
Create an application key in Datadog:
- In Datadog, go to Personal settings*.
- From the menu on the left, click Application keys. In the top right corner of the view, click New Key.
- Once the key is created, copy the key ID (DD-API-KEY) and a key (DD-APPLICATION-KEY).
- In Omada Identity, in the system onboarding view, click the Connection details.
- Enter the copied values to the API Key and Application Key fields.