FAQ

Cardholders in the Command Centre are mapped using a unique identifier, which can be an email address or another specific field like a user ID. This identifier is used by the workflow to look up the cardholder in Command Centre and ensure that the correct person is being updated with the requested access or credentials. The mapping process involves using the API to find the cardholder based on this identifier and then updating their information accordingly.

Cardholders can be created through the workflow process, but it depends on the customer's setup. Primarily, customers are expected to choose the option to look up existing cardholders rather than creating new ones. However, it is possible to create a new cardholder through an approval process if the workflow is set up to allow it. This flexibility is part of the workflow design and can be configured based on the customer's requirements.

For exceptional cases, such as channel partners who are unable to use their customer SSO infrastructure, non-SSO accounts should be created. This can be done by following the standard user creation instructions, with the exception that a password must be provided for these accounts. All non-SSO users must also use two-factor authentication.

If a user requires access to multiple tenants and SSO is unavailable for all, separate non-SSO user accounts must be created with unique email addresses.