Manage Users and Groups

Secure Access supports the integration of users and groups through various identity providers (IdPs). Once you add users and groups into Secure Access, you can protect and monitor the connections for the users to internet and private destinations. Configure the Access rules in the organization's policy for the users and groups.

  • You can integrate multiple cloud IdPs with Secure Access.

In addition to integrations with identity providers for provisioning users and groups, we recommend that you configure user authentication profiles. Authentication profiles describe integrations with single sign-on (SSO) IdPs. SSO IdPs authenticate users that connect through the Secure Access Secure Web Gateway (SWG) or with Secure Access Zero Trust Access.

  • You can set up multiple authentication profiles in Secure Access.
  • An authentication profile describes the association between a provisioning IdP and an SSO IdP.

After you add user directory integrations and set up user authentication profiles, Secure Access displays the users and groups that you provisioned in the organization.

Table of Contents

Get Started with User Configuration Management

First, configure a user directory integration with Secure Access. The directory integration provisions users and groups into Secure Access.

Then, set up SSO authentication for users that connect to the web through the Secure Web Gateway or communicate with private destinations through Zero Trust Access.

Step 1 – Manage User Directories

Step 2 – Manage User Authentication Profiles

View Provisioned Users and Groups

After you provision users and groups in Secure Access, you can view the information about these identities.

Manage Remote Access VPN and Zero Trust Device Connections

In Secure Access, manage the user connections.


Secure Access Regions < Manage Users and Groups > View User Details