Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Adds section to directory sync and admonitions to device identity #1259

Merged
merged 2 commits into from
Feb 22, 2024
Merged

Adds section to directory sync and admonitions to device identity #1259

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
07e9482
adds section to directory sync and admonitions to device identity
ZPain8464 Feb 21, 2024
2b6564d
fixes pre-commits
ZPain8464 Feb 21, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 8 additions & 0 deletions content/docs/capabilities/device-identity.mdx
View file
Original file line number Diff line number Diff line change
@@ -67,6 +67,14 @@ Enterprise users can build policies that only grant access to a route if a user

The Enterprise Console’s **Manage Devices** GUI provides a dashboard where administrators can enroll devices and generate custom registration links for users in their directory.

:::enterprise

Before you can generate device registration links for users within your directory, you must sync your directory data first.

See [**Directory Sync**](/docs/capabilities/directory-sync) for more information.

:::

To enroll a new device:

1. In the Console sidebar, select **Devices**
14 changes: 12 additions & 2 deletions content/docs/capabilities/directory-sync.mdx
View file
Original file line number Diff line number Diff line change
@@ -55,6 +55,16 @@ The requirements and instructions for directory sync vary depending on the ident

## How to use directory sync

After a successful sync, directory data sourced from your identity provider will be available in the Enterprise Console. You can use this data as context in your authorization policies to control which users and groups can access upstream applications and services:
### Directory data as policy criteria

![Using directory sync group data as criteria in the Enterprise Console PPL builder](./img/directory-sync/directory-sync-group-criteria.png)
After a successful sync, directory data sourced from your identity provider will be available in the Enterprise Console. You can use this data as context in your authorization policies to control which users and groups can access upstream applications and services: ![Using directory sync group data as criteria in the Enterprise Console PPL builder](./img/directory-sync/directory-sync-group-criteria.png)

### Device enrollment

Administrators can generate custom device registration links for users within their directory: ![Generating device registration links for users in the Enterprise Console](./img/directory-sync/device-enrollment.png)

:::enterprise

See [**Device Identity**](/docs/capabilities/device-identity) for more information on how to enroll and manage devices in the Enterprise Console.

:::
Binary file added content/docs/capabilities/img/directory-sync/device-enrollment.png
View file
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading