- Getting Started
- Recommended Integration & Registration Flow
- Admin Console Overview
- User Onboarding and Management
- User Registration and Login
- Enterprise Applications
- Microsoft Integration
- Installing TraitWare PAM Module for SSH and SFTP
- cPanel OIDC Integration
- Browser Extension
Recommended Integration & Registration Flow
Posted on March 27, 2020
To assist in the integration of TraitWare into your company, we have created a recommended flow with time estimations. This should allow admins to create a proficient plan for switching their users to TraitWare.
Step 1: TraitWare Admin Console Access
This process should take no more than 5 minutes
- Access to admin.traitware.com will need to be obtained through our free trial or by contacting us directly at contact@traitware.com
- Register your device to TraitWare via the Registration Email
- Use your TraitWare app to sign in to admin.traitware.com by scanning the QR
Step 2: Adding Applications in TraitWare
This process can take up to 5 minutes per application. This does not include set up time for the Service Provider
- TraitWare works with many SAML and OIDC services
- Depending on the Service Provider, setup in TraitWare may remain incomplete until after your users have been registered.
- TraitWare Provides a number of pre-templated SAML configurations
- If you don’t see a Service Provider you are hoping to use, you can follow the Generic SAML template, or contact us at support@traitware.com, and we will investigate if TraitWare works for your service
Step 3: Adding Users to the TraitWare Console
This process can take up to 5 minutes with user sync. Import and manual will depend upon how much time is spent modifying and editing, but it would be safe to allow yourself up to 60 minutes for this
- Users can be added manually, through import, or by User Sync (requires additional LDAP setup)
Step 4: Registering Users
This is dependent upon your users’ response to registering, but plan for a few days
- Once users are added, Batch Send Emails can be used to send out the registration to all users **We currently do not have the option to send in groups. It is individual or all users
- Users will have 24 hours to register their device with the email. After 24 hours, please use the Batch Add Devices to renew expired Registration Codes
- If you desire the option to set users up in person, each user profile has an Action to Show QR and register in person with the admin
- We also recommend providing users with access to the TraitWare Demo Videos so they can view how it works
- You can link users to a high-level registration overview here
- Users can practice by going to sso.traitware.com until their applications are setup
Step 5: Complete Setup of Service Providers
Each Service Provider can take anywhere from 30 minutes up to a few hours depending on the environment
- Take note that there are some Service Providers that can be set up completely prior to this step and then turned on when you are ready to switch.
- There are also certain Service Providers which will allow for the option to keep traditional login as an option (Microsoft and Google do not provide this option)
- The process of completing setup to your Service Provider can take anywhere from 30 minutes to a few hours depending on your environment and the service
- Citrix and Microsoft will require the most involvement, though both can be set up nearly to completion before Registration emails are sent out (Microsoft can be set up for every step except the Federation Script)
Step 6: Turn on TraitWare Application Access for Users
This can range anywhere from a minute up to an hour depending on if you have to manually turn on a large number of individual users
- This step can be done by using the Enable All User Access button in each Application or by turning on individual user application access (There is currently not a way to turn them on in groups unless you are using LDAP Group Mapping Sync)
- This can also be done by using the User Sync Group Mappings option. **Please note that this will need to be used for all applications as it turns on/off access that is manually toggled