Duo Admin User

The Duo source supports aggregation, provisioning, and password management of administrator user in the Duo managed target system.

For New Sources

For the new Duo sources, on the UI, select Manage Administrator User to start managing the Administrator Users.

For provisioning of the Admin user, the additional attributes that you must consider with the existing attributes are:

user_type
name
password (Optional)
phone (Optional)
role

For more information, refer to the Provisioning Policy Attributes section.

To send an email with the set up link while creating the Duo administrators, add the send_email attribute in the Create Profile section and set it to true as a Static Value field. The default value is false.

For Pre-existing Sources

Refer to Best Practices: REST API Authentication and REST API - Update Source (Partial) to add the following attributes using APIs.

Add schema attributes as per below settings:
- role: Administrator role: string
- user_type: Type of user: string
- restricted_by_admin_units: Administrator account restricted by an administrative unit assignment: boolean

Add the adminUsersUri attribute key with a value such as /admin/v1/admins
To enable the password management for administrator user, the feature value 'PASSWORD' must be added to the features string. Add the featuresString attribute key with a value such as PROVISIONING, SYNC_PROVISIONING, UNLOCK, ENABLE, SEARCH, PASSWORD

Caution
Password management is applicable for the administrator users and not for the normal users.

Feedback is provided as an informational resource only and does not form part of SailPoint's official product documentation. SailPoint does not warrant or make any guarantees about the feedback (including without limitation as to its accuracy, relevance, or reliability). All feedback is subject to the terms set forth at https://developer.sailpoint.com/discuss/tos.


	You are here:

Duo Admin User

For New Sources

For Pre-existing Sources

Documentation Feedback