General settings
Delinea does not support deleting accounts. Select the Account deletion unsupported checkbox.
Connector settings
| Parameter | Description |
|---|
| Base address | {Base address} |
| Authentication mode | OAuth2 |
| OAuth Grant Type | Password credentials |
| URL for Authorization token | {URL for Authorization token} |
| Token cache policy | Never cache |
| Username | {username} |
| Password | {Password} |
| Security protocol | TLS 1.2 |
| Content type header | application/json |
| Accept header | application/json |
| Timeout in seconds | 100 |
| Test connection | Select the checkbox |
Task mappings
| Parameter | Resource Type | Description |
|---|
| Delinea user | Delinea Account | Contains mappings of account assignments to Delinea user assignments. |
| Delinea reset password | Delinea Account | Contains mappings of password reset in Delinea. |
| Delinea Roles | Delinea Roles | Contains mappings of roles to Delinea user. |
| Delinea Groups | Delinea Groups | Contains mappings of groups to Delinea user. |
| Delinea Folder | Delinea Folders | Contains mappings of folders to Delinea user. |
Delinea user
The object is used to create, update, and deactivate user (account).
| Parameter | Operator | Source |
|---|
| Object Id | Expression | Operation != "Create" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor) : "IGNORED" |
| Object type | Constant | users/ |
| Operation | Expression | ROPE_DistinguisedName != null || ROPE_ExternalAnchor != null ? "Update" : Operation |
| userName | Map | ROPE_ATTR_FIRSTNAME |
| displayName | Expression | Operation == "Create" ? ROPE_ATTR_FIRSTNAME + " " + ROPE_ATTR_LASTNAME: null |
| emailAddress | Map | ROPE_ATTR_EMAIL |
| password | Map | ROPE_ATTR_INITIALPASSWORD |
| displayName | Expression | Operation == "Create" ? ROPE_ATTR_FIRSTNAME + " " + ROPE_ATTR_LASTNAME: null |
| displayName | Expression | Operation == "Update" ? ROPE_ATTR_FIRSTNAME + " " + ROPE_ATTR_LASTNAME: null |
| userName | Map | ROPE_ATTR_IDENTITYID |
| enabled | Expression | Operation == "Update" && ROPE_Disabled == true ? false : true |
| userId | Expression | Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor) |
| id | Expression | Operation == "Update" ? ROPE_ATTR_IDENTITYID : null |
Delinea reset password
The object is used to reset password of users in Delinea.
| Parameter | Operator | Source |
|---|
| Object Id | Map | ObjectId |
| Object type | Constant | Delinea reset password |
| Operation | Map | Operation |
| displayName | Expression | SSPR_ATTR_FIRSTNAME + " " + SSPR_ATTR_LASTNAME |
| password | Map | SSPR_NewPassword |
| userId | Map | SSPR_AccountName |
| enabled | Constant | true |
| id | Map | SSPR_AccountName |
| emailAddress | Map | SSPR_ATTR_EMAIL |
Delinea roles
The object is used to create, delete user roles.
| Parameter | Type | Description |
|---|
| Object Id | Maps | ObjectId |
| Object type | Constant | Delinea Roles |
| Operation | Map | Operation |
| roleIds | Map | ROPE_ATTR_ODWLOGICKEY |
| theId | Expression | Operation == "Create" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
| theId | Expression | Operation == "Delete" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
Delinea groups
The object is used to create, delete user groups.
| Parameter | Type | Description |
|---|
| Object Id | Map | ObjectId |
| Object type | Constant | Delinea Groups |
| Operation | Map | Operation |
| groupIds | Map | ROPE_ATTR_ODWLOGICKEY |
| theId | Expression | Operation == "Create" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
| theId | Expression | Operation == "Delete" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
Delinea folders
The object is used to create, delete user folders with folder and secret permissions.
| Parameter | Type | Description |
|---|
| Object Id | Map | ObjectId |
| Object type | Constant | Delinea Folder |
| Operation | Map | Operation |
| data.addOrUpdateItems[].folderAccessRoleId | Expression | Operation == "Create" ? ROPE_ATTR_C_DELINEAFOLDERPERMISSIONS.Substring(ROPE_ATTR_C_DELINEAFOLDERPERMISSIONS.LastIndexOf('_') + 1): null |
| data.addOrUpdateItems[].secretAccessRoleId | Expression | |
| data.addOrUpdateItems[].userId | Expression | `Operation == "Create" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
| folderid | | ROPE_ResourceIdentifier.Substring(ROPE_ResourceIdentifier.IndexOf('_') + 1).Split('_')[0] |
| data.removeItems[].userId | Expression | Operation == "Delete" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |
| data.addOrUpdateItems[].secretAccessRoleId | Expression | Operation == "Update" ? (ROPE_ATTR_C_DELINEASECRETPERMISSIONS.Substring(ROPE_ATTR_C_DELINEASECRETPERMISSIONS.LastIndexOf('_') + 1) != "0" ? ROPE_ATTR_C_DELINEASECRETPERMISSIONS.Substring(ROPE_ATTR_C_DELINEASECRETPERMISSIONS.LastIndexOf('_') + 1) : null) : null |
| data.addOrUpdateItems[].folderAccessRoleId | Expression | Operation == "Update" ? ROPE_ATTR_C_DELINEAFOLDERPERMISSIONS.Substring(ROPE_ATTR_C_DELINEAFOLDERPERMISSIONS.LastIndexOf('_') + 1): null |
| data.addOrUpdateItems[].userId | Expression | Operation == "Update" ? Extensions.GetFirstValue(ROPE_DistinguisedName, ROPE_ExternalAnchor, JobAnchor, ROPE_AccountExternalAnchor) : null |