Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in
Products
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

User Governance Automation: Integrating PingOne with Jira Service Management

June 24, 2024

One of the common HR service use cases is to automate user governance. This requires native integration from Jira Service Management to Identity providers. In this article, we are going to cover PingOne integration, how-tos, and benefits.

Common HR Service Requests

  • Create User
  • Disable User
  • Provision Groups for User
  • Remove User from a Group

Onlink - PingOne_1.jpg

For our example, let’s use the fictional company with the following details:

  • Company Name: Onbees Inc
  • Terminate: John Smith
  • Identity Management Provider: PingOne

As part of the termination process, we need to disable the user in PingOne so that all internal IT access is terminated. Also, we want to execute this task on the termination date at 5 PM in the user’s time zone.

Flow Configuration

Using, OnRamp we can create a flow with a specific task to disable user in PingOne.

Screenshot 2024-06-24 at 9.12.59 AM.png

We can use the task condition feature to setup to disable the user exactly at 5PM user's time zone. Please refer to the screenshot for the configuration.

Screenshot 2024-06-24 at 9.13.10 AM.png

 

PingOne Configuration

1. Create a New Application: Select type “Worker”

2. Assign Roles: Click on Roles and assign appropriate roles to the application, e.g., Identity Admin

ping1.png

3. Set Configuration: Click on the Configuration tab and set the Request Type to Token - Select Grant Types: Implicit and Client Credentials - Click Save

ping2.png

Your configuration should look like the example below. You can then copy the Client ID, Client Secret, and Environment ID.

ping3.png

For more information refer to PingOne documentation - link.

Automation Using OnLink

1. Create Connection in OnLink: Click on OnLink (from Apps - Manage your apps menu) Create a new connection with the above information - Client ID, Client Secret and Environment ID

onlink1.png

2. Once the connection is estalished using OnLink, you can access the methods within the Workflow under Post Function. You have full flexibility on when to invoke the methods and add human approval, if required. Screenshot below highlights the methods supported.

Screenshot 2024-06-24 at 9.30.10 AM.png

Conclusion

Say goodbye to manual data updates and hello to a seamless user governance automation by freeing up HR & IT to focus on high-value tasks.

Comment
Watch
Like M Amine likes this
141 views

0 comments

Comment

Log in or Sign up to comment
Prabhu Palanisamy _Onward_

Prabhu Palanisamy _Onward_

Marketplace Partner
Marketplace Partner
Marketplace Partners provide apps and integrations available on the Atlassian Marketplace that extend the power of Atlassian products.
Explore the Marketplace

About this author

President

Onward

Ashburn, VA

1 accepted answer

159 total posts

View profile
groups-icon
App Central
TAGS
AUG Leaders

Atlassian Community Events

    See all events