Version 25.3.9396

• Add the Certinia Connector
• Authenticate to Certinia
  • Basic
  • OAuth
  • OAuth Client
  • OAuth Password
  • OAuth JWT
  • OAuth PKCE
  • OneLogin
  • PingFederate
  • Okta
  • Active Directory Federation Services
  • Azure Active Directory
• Complete Your Connection
• More Information

You can use the Certinia connector from the CData Sync application to capture data from Certinia and move it to any supported destination. To do so, you need to add the connector, authenticate to the connector, and complete your connection.

Add the Certinia Connector

To enable Sync to use data from Certinia, you first must add the connector, as follows:

1. Open the Connections page of the Sync dashboard.

2. Click Add Connection to open the Select Connectors page.

3. Click the Sources tab and locate the Certinia row.

4. Click the Configure Connection icon at the end of that row to open the New Connection page. If the Configure Connection icon is not available, click the Download Connector icon to install the Certinia connector. For more information about installing new connectors, see Connections.

Authenticate to Certinia

After you add the connector, you need to set the required properties.

On the New Connection page, enter the connection name of your choice.

CData Sync supports authenticating to Certinia in several ways. Select your authentication method below to proceed to the relevant section that contains the authentication details.

• Basic

• OAuth (default)

• OAuth Client

• OAuth Password

• OAuth JWT

• OAuth PKCE

• OneLogin

• PingFederate

• OKTA

• Active Directory Federation Services

• Azure Active Directory

Basic

To connect with user credentials and a security token, specify the following settings:

• Auth Scheme: Select Basic.

• User – Enter the username that you use to authenticate to your Certinia account.

• Password – Enter the password that you use to authenticate to your Certinia account.

• Security Token (optional) – Enter the security token for your Certinia account. If you do not know your security token, you can reset it as follows:

  1. Open your personal information page on the https://www.salesforce.com/ website.

  2. Click the link to reset your security token. The token will be emailed to you.

OAuth

CData Sync provides an embedded OAuth application with which to connect. To use the application, select OAuth for Auth Scheme. No additional properties are required.

OAuth Client

To connect with an OAuth client, specify these settings:

• Auth Scheme - Select OAuthClient.

• OAuth Client Id - Enter the client Id that you were assigned when you registered your application with an OAuth authorization server.

• OAuth Client Secret - Enter the client secret that you were assigned when you registered your application with an OAuth authorization server.

OAuth Password

To connect with OAuth credentials, specify the following settings:

• Auth Scheme: Select OAuthPassword.

• User – Enter the username that you use to authenticate to your Certinia account.

• Password – Enter the password that you use to authenticate to your Certinia account.

• Security Token – Enter the security token for your Certinia account. If you do not know your security token, you can reset it as follows:

  1. Open your personal information page on the https://certinia.com/ website.

  2. Click the link to reset your security token. The token will be emailed to you.

OAuth JWT

To connect with a Certinia account, specify the following properties:

• Auth Scheme - Select OAuthJWT.

• OAuth Client Id - Enter the client Id that you were assigned when you registered your application with an OAuth authorization server.

• OAuth Client Secret - Enter the client secret that you were assigned when you registered your application with an OAuth authorization server.

• OAuth JWT Cert – Enter your Java web tokens (JWT) certificate store.

• OAuth JWT Cert Type – Enter the type of key store that contains your JWT certificate. The default type is PEMKEY_BLOB.

• OAuth JWT Issuer – Enter the issuer of your Java web token. Typically, the issuer is either the client Id or the email address of the OAuth application.

• OAuth JWT Cert Password (optional) – Enter the password for your OAuth JWT certificate.

• OAuth JWT Cert Subject (optional) – Enter the subject of your OAuth JWT certificate.

• OAuth JWT Subject (optional) – Enter the user subject for which the application is requesting delegated access.

• OAuth JWT Subject Type (optional) - Select the subject type (enterprise or user) for the JWT authentication. The default type is enterprise.

• OAuth JWT Public Key Id (optional) – Enter the Id of the public key for JWT.

OAuth PKCE

CData Sync provides an embedded OAuth application with which to connect. To connect with the OAuth PKCE extension, select OAuthPKCE for Auth Scheme. No additional properties are required.

OneLogin

To connect with single sign-on (SSO) via OneLogin, specify the following settings:

• Auth Scheme: Select OneLogin.

• User – Enter the username for your Certinia account.

• Password – Enter the password for your Certinia account.

• SSO Properties – Enter a semicolon-separated list of the single sign-on (SSO) properties that you want to use (for example, SSOProperty1=Value1;SSOProperty2=Value2;…).

• SSO Exchange URL – Enter the Certinia OAuth 2.0 token endpoint for the identity provider (for example, https://MyOrganization.My.CertiniaAcct.com/services/oauth2/token).

PingFederate

To connect with single sign-on via PingFederate, specify the following properties:

• Auth Scheme - Select PingFederate.

• User - Enter the username that you use to authenticate to your PingFederate account.

• Password - Enter the password that you use to authenticate to your PingFederate account.

• SSO Login URL - Enter the login URL that is used by your SSO provider.

• SSO Properties - Enter a comma-separated list of the single sign-on (SSO) properties that you want to use (for example, SSOProperty1=Value1;SSOProperty2=Value2;…).

• SSO Exchange UrI - Enter the Partner Service Identifier URI that is configured in your PingFederate server instance. The URI is available under SP Connections > SP Connection > WS-Trust > Protocol Settings.

Okta

To connect with single sign-on (SSO) via Okta, specify the following properties:

• Auth Scheme: Select OKTA.

• User: Enter the username that you use to authenticate to your Okta account.

• Password: Enter the password that you use to authenticate to your Okta account.

• SSO Login URL: Enter the login URL that is used by your SSO provider.

• SSO Properties: Enter a semicolon-separated list of the single sign-on (SSO) properties that you want to use (for example, SSOProperty1=Value1;SSOProperty2=Value2;…).

Active Directory Federation Services

To connect with single sign-on (SSO) via ADFS, specify the following properties:

• Auth Scheme - Select ADFS.

• User - Enter the username that you use to authenticate to your ADFS account.

• Password - Enter the password that you use to authenticate to your ADFS account.

• SSO Login URL - Enter the login URL that is used by your SSO provider.

• SSO Properties - Enter a semicolon-separated list of the single sign-on (SSO) properties that you want to use (for example, SSOProperty1=Value1;SSOProperty2=Value2;…).

• SSO Exchange UrI - Enter the Partner Service Identifier URI that is configured in your PingFederate server instance. The URI is available under SP Connections > SP Connection > WS-Trust > Protocol Settings.

Azure Active Directory

To connect with single sign-on via AzureAD, specify the following settings:

• Auth Scheme: Select AzureAD.

• SSO Properties – Enter a semicolon-separated list of the single sign-on (SSO) properties that you want to use (for example, SSOProperty1=Value1;SSOProperty2=Value2;…).

• SSO Exchange URL – Enter the Certinia OAuth 2.0 token endpoint for the identity provider (for example, https://MyOrganization.My.CertiniaAcct.com/services/oauth2/token).

• OAuth Client Id – Enter the client Id that you were assigned when you registered your application with an OAuth authorization server.

• OAuth Client Secret – Enter the client secret that you were assigned when you registered your application with an OAuth authorization server.

Note: This configuration requires two separate Azure Active Directory applications:

• the Certinia application that you use for single sign-on.

• a custom OAuth application with user_impersonation permission set on the Certinia application. (For details, see Creating a Custom OAuth App.)

Complete Your Connection

To complete your connection:

1. Specify the following properties:

   • API Version (optional) - Enter your API version. The default version is 62.0.

   • Login URL (optional) - Enter your login URL for Certinia.

   • Use Sandbox (optional) - Select True if you want to connect to a sandbox account. Otherwise, leave the default setting (False).

2. Define advanced connection settings on the Advanced tab. (In most cases, though, you should not need these settings.)

3. If you authenticate with OAuth or AzureAD, click Connect to Certinia to connect to your Certinia account.

4. Click Create & Test to create your connection.

More Information

For more information about interactions between CData Sync and Certinia, see Certinia Connector for CData Sync.