Configuring provisioning for ZScaler Private Access
Provision users from IBM® Verify to a ZScaler Private Access application.
Before you begin
About this task
Provisioning provides the following features.
- Create new users
- New users that are created through Verify are also created in the ZScaler Private Access application.
- Delete users
- Deactivating the user or disabling the user's access to the application through Verify deletes the user in the ZScaler Private Access application.
- Modify user profile
- Updates made to the user's profile through Verify are pushed to the ZScaler Private Access application.
- User suspend and restore
- Suspending a user through Verify deactivates the user and restoring the user through Verify activates the user in the ZScaler Private Access application.
- User account synchronization and remediation
- The ZScaler Private Access application supports user account synchronization, remediation, and
group synchronization features.
- User account synchronization fetches all the target application user accounts in Verify and matches the fetched accounts with users in Verify. The adoption policy that is defined on the application specifies the matching attributes for adoption of the synchronized user accounts.
- Remediation policy can be configured to remediate user accounts with attribute values that differ between Verify and the target application.
-
Verify Supports the
following three remediation policies:
- Do not remediate non-compliant accounts automatically.
- Update Verify account attribute values with the target application values.
- Update target application account attribute values with Verify values.
- Group synchronization fetches all the target application groups in Verify.