Share this page
Step 5: Map IdP users with ALM users
Prerequisite: Step 4: Register ALM as SP in IdP.
This step is to map IdP users with ALM users.
In this topic:
How users are mapped
IdP users are mapped to ALM users by two ALM user attributes: Identity Provider Name and Identity Key.
| ALM attribute | Mapped to IdP attribute |
|---|---|
| Identity Provider Name | The IdP name that is configured in the ALM SSO Configuration Tool, such as the default IdP "alm". |
| Identity Key | The IdP user attribute that can uniquely identify an IdP user. For example, username, user ID, and user email. |
Map users
You can map IdP users to ALM users individually or in batches. The first IdP user to be mapped should be a site administrator user.
| Method | Details |
|---|---|
| Map users individually |
You can use this method only after SSO is enabled. To map an IdP user with an ALM user:
For details, see Update user details. |
| Map users in batches by using site administration REST API |
You can use this method regardless of whether SSO is enabled. Set the idp-name and identity-key attributes for the site users. For details, see Site Administration REST API Reference: Site Users > Update a site user. |
| Map users in batches by importing users to ALM |
You can use this method regardless of whether SSO is enabled. When mapping fields during uploading a .csv file, make sure the ALM fields Identity Provider Name and Identity Key are mapped to the corresponding IdP fields. For details, see Import users from CSV files. |
Next steps:
