Enable Automatic Account Provisioning

Required User Role: Administrator

When you manually configure or edit a SAML configuration, you can enable automatic user account provisioning. Automatic account provisioning allows users with credentials for the IdP named in the SAML configuration to create a Tenable MSSP account the first time they log in via the IdP.

Tip: Review the Tenable SAML Configuration Quick-Reference guide for a step-by-step guide of how to configure SAML for use with Tenable MSSP.

Tenable MSSP creates automatically provisioned accounts with the following defaults:

  • Full name — NameID

  • Username — NameID

  • Email — NameID

  • User role — Basic

Tenable MSSP does not currently support any other claim types.

To enable automatic user account provisioning:

  1. In the upper-left corner, click the Menu button.

    The left navigation plane appears.

  2. In the left navigation plane, click Settings.

    The Settings page appears.

  3. Click the SAML tile.

    The SAML page appears.

  4. In the SAML table, click the SAML configuration for which you want to enable automatic account provisioning.

    The SAML Settings page appears.

  5. At the bottom of the page, click the User Autoprovisioning Enabled toggle to enable automatic account provisioning.

  6. Click Save.

    Tenable MSSP enables automatic account provisioning in the SAML configuration.