Nailing the Security Audit with RRCU

ConductorOne docs

Set up a Snipe-IT connector

ConductorOne provides identity governance and just-in-time provisioning for Snipe-IT. Integrate your Snipe-IT instance with ConductorOne to run user access reviews (UARs) and enable just-in-time access requests.

Capabilities

  • Sync user identities from Snipe-IT to ConductorOne

  • Resources supported:

    • Groups
    • Permissions

  • Provisioning supported:

    • Group membership

Add a new Snipe-IT connector

This task requires either the Connector Administrator or Super Administrator role in ConductorOne.

  1. In ConductorOne, click Connectors > Add connector.

  2. Search for Snipe-IT and click Add.

  3. Choose how to set up the new Snipe-IT connector:

    • Add the connector to a currently unmanaged app (select from the list of apps that were discovered in your identity, SSO, or federation provider that aren’t yet managed with ConductorOne)

    • Add the connector to a managed app (select from the list of existing managed apps)

    • Create a new managed app

    Do you SSO into Snipe-IT using your identity, SSO, or federation provider? If so, make sure to add the connector to the unmanaged Snipe-IT app that was created automatically when you integrated your provider with ConductorOne, rather than creating a new managed app.

  1. Set the owner for this connector. You can manage the connector yourself, or choose someone else from the list of ConductorOne users. Setting multiple owners is allowed.

    An Snipe-IT connector owner must have the following permissions:

    • Connector Administrator or Super Administrator role in ConductorOne
    • Access to a Snipe-IT account that can generate the API token used in the integration
  1. Click Next.

Next steps

  • If you are the connector owner, proceed to Configure your Snipe-IT connector for instructions on integrating Snipe-IT with ConductorOne.

  • If someone else is the connector owner, ConductorOne will notify them by email that their help is needed to complete the setup process.

Configure your Snipe-IT connector

A user with the Connector Administrator or Super Administrator role in ConductorOne and access to an Snipe-IT account used to generate the API token used in the integration must perform this task.

Step 1: Generate an API token

  1. In the Snipe-IT web interface, click your user name and select Manage API keys.

  2. Click Create New Token.

  3. Carefully copy and save the new token. We’ll use it in Step 2.

Step 2: Add your Snipe-IT credentials to ConductorOne

  1. In ConductorOne, navigate to the Snipe-IT connector by either:

    • Clicking the Set up connector link in the email you received about configuring the connector.

    • Navigate to Connectors > Snipe-IT (if there is more than one Snipe-IT listed, click the one with your name listed as owner and the status Not connected).

  2. Find the Settings area of the page and click Edit.

  3. Enter your Snipe-IT base URL into the Base URL field.

  4. Paste the access token you generated in Step 1 into the Access token field.

  5. Click Save.

  6. The connector’s label changes to Syncing, followed by Connected. You can view the logs to ensure that information is syncing.

That’s it! Your Snipe-IT connector is now pulling access data into ConductorOne.

Configure the Snipe-IT integration using Terraform

As an alternative to the integration process described above, you can use Terraform to configure the integration between Snipe-IT and ConductorOne.

See the ConductorOne Snipe-IT integration resource page in the ConductorOne Terraform registry for example usage and the full list of required and optional parameters.