Using Custom Account Types with your IdP

Sigma supports four default user account types (Admin, Creator/Author, Explorer and Viewer) along with an option to define numerous additional custom account types.

Custom account types are defined in the Sigma Admin Portal. However, if your organization uses an Identity Provider (IdP) for account management, you will assign users to the account type in your IdP, similar to your process for assigning default account types through the IdP.

Note: This process has only been tested for Okta and Azure instances.

Note: As of 6/17/21, Creator and Explorer account types are not yet default user types/roles in IdP marketplace-generated apps. The Author type can still be used for Creators. And the Explorer role can be added to your IdP like a custom account type.

Summary of Content

Requirements
General Instructions
Using Custom Account Types with Okta
Using Custom Account Types with Azure
Related Resources

Requirements

  • Admin access to Sigma
  • Administrator access to your IdP
  • SCIM configured for Sigma and your IdP Learn more.

General Instructions

  1. Log into Sigma and create a custom account type.
  2. Log into your IdP.
  3. Create a new user type that matches your custom account type in Sigma. The identifier should be identical to its corresponding account type in Sigma.
    After saving, you should now be able to assign existing or new users to your account type.

Using Custom Account Types with Okta

  1. Log into Sigma and create a custom account type.
  2. Log into Okta and open your Sigma application.
  3. Open the Provisioning tab.
  4. Click the Go to Profile Editor button to open the Profile Editor page.
  5. Click the edit button for the User Type attribute.
  6. Under Attribute members, click Add Another.
  7. Enter a Display name and Value. These identifiers must match the name of the custom account type in Sigma.
  8. Click Save Attribute.
    You can now assign this user type to new and existing users via your application’s Assignments tab.

Using Custom Account Types with Azure

  1. Log into Sigma and create a custom account type.
  2. Log into Azure and open your Sigma application.
    Azure Active Directory -> App Registrations -> All Applications -> Search for and select your application.
  3. Go to the App Roles page.
  4. Click Create app role to create a new app role.
    After the role is created, it should appear on the users / groups assignments page and can be assigned.

Related Resources

Account Types
Managing Users and Teams with SCIM
Manage Users and Teams with SCIM and Okta
Configure [Azure and] Sigma Computing for automatic user provisioning (Azure documentation)