Contents x
Mappers Configuration
  • 08 Dec 2024
  • 4 Minutes to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF
Contents

Mappers Configuration

  • Updated on 08 Dec 2024
  • 4 Minutes to read
  • Contributors
  • Print
  • Dark
    Light
  • PDF
Article summary

In Account, you can turn on and manage authorization in Simulator and Corezoid for your organization using the Mappers. This functionality allows license owners to flexibly configure permissions for Simulator users who log into Simulator using Identity Providers according to their roles granted by Identity Providers.

Each Mapper links Identity Provider privileges to Simulator and Corezoid access rights by using an Attribute name/value pair from the Identity Provider, where:

  • Attribute name is a permission parameter.
  • Attribute value defines specific privileges within that parameter.

Workspace configuration that specifies which Simulator workspaces, roles, and groups will be assigned to users with matching Attribute values:

mappers-idp general diagram

Mappers Tab

On the Mappers tab, you can view and use the following:
a. Click to add a new Mapper to your SSO configuration.
b. View the existing Mappers' names and types.
c. Click to open the Mapper menu to edit and remove a Mapper.

mappers tab main1

Name and Email default mappers

After entering the correct SAML file content into the corresponding field on the Settings tab, the name and email default Mappers are automatically added to the Mappers tab.

Add and turn on a new Mapper to configure SSO authorization for users in the specified email domain.

Add Mapper

Mapper turning on

For each Attribute value (see below) corresponding the Attribute name parameter (see below) applied to the specified domains, create at least one Mapper to manage the domain users' access to Corezoid and Simulator.
After turning on the Mappers, the ownership of all the workspaces created by the specified domain users is transferred to the license owner.
As a license owner, after configuring and turning on a Mapper, users in your license workspaces will not be able to create new workspaces. Only you will be able to create new workspaces for your licenses.

To add a new Mapper on the Identity Providers page:

  1. Open the Mappers tab.
  2. Click + Add mapper.
  3. Enter the new Mapper name in the field (1).
  4. Select the Mapper type in the drop-down list (2). You can choose from the following types:

a. Hardcoded SAML attribute: used for hardcoded attributes from your SAML file. This option allows you to select Email and Name account values in the Account value field and does not provide workspace configuration (5) for user permissions.
add new mapper-hardcoded saml attr

b. SAML attribute to Role/Group (default): This option allows you to enter an Attribute name (3) and an Attribute value (4) and to add a workspace configuration (5) for the Mapper.
c. Default Role/Group: allows you to map Identity Provider default role or group permissions to the domain users. You can enter a name for such a Mapper and add a workspace configuration (optional).
add new mapper-default role-group

  1. Enter the name for the attribute (3).
  2. Enter the attribute value (4).
  3. Add at least one workspace configuration (5).
  4. Click Save.

add new mapper numbered

Click Save to see the "Organization Identity Provider map has been created" notification indicating a successful Mapper creation.
After saving a Mapper configuration, the specified domains' users will access Simulator and Corezoid according to the configuration in the SAML file.

Add Workspace Configuration

Using workspace configuration in Mappers, license owners can manage and grant Corezoid and Simulator roles in specified workspaces to domain users and assign them to user groups based on privileges granted to the users by Identity Providers.

Add a workspace configuration after specifying the Name, Attribute name, and Attribute value for a Mapper in the Add mapper menu. To add a new workspace configuration:

  1. Select SAML attribute to Role/Group or Default Role/Group in the Mapper type drop-down list.
  2. Click + Add workspace configuration.

add workspace conf

  1. In the Select workspace field (a), select the workspace to which you want to grant the domain users access in the Mapper.
  2. In the Roles field (b), select the roles you want to assign to the domain users in the specified workspace.
  3. In the Groups field (c), select the groups in the workspace you want to assign the domain users.
  4. Click Save (d) to save the changes.

add workspace conf menu

Click Save to see the "Organization Identity Provider map has been created" notification indicating a successful Mapper creation.
After saving the Mapper with a workspace configuration, the specified domains' users will access Simulator and Corezoid workspaces according to the configuration in the SAML file.
You can edit a Mapper if you want to change the Mapper configuration and domain users' access and roles.

Edit Mapper

Mapper type change

You can't change the Mapper type parameter of an existing Mapper. To use a Mapper with another type, create a new Mapper.

To edit a Mapper:

  1. On the Mappers tab, click the three-dot list of the Mapper you want to edit.
  2. In the three-dot list, select Edit.

edit mapper

  1. Change the Mapper configuration.
  2. Click Save to save the changes.

Click Save to see the "Organization Identity Provider map has been updated" notification indicating a successful Mapper update.

edit mapper-unchangeable type

Remove Mapper

If you have a Mapper that you don't want to use, you can delete it. To delete a Mapper:

  1. On the Mappers tab, click the three-dot list of the Mapper you want to edit.
  2. In the three-dot list, select Remove.

remove mapper

  1. Confirm the Mapper removal by clicking Remove.

Click Remove to see the "Organization Identity Provider map has been removed" notification indicating a successful Mapper deletion.

Was this article helpful?
What's Next