Skip to content
Oblique Docs

Quickstart

This guide will allow you to start managing access to resources using Oblique. To do that, you’ll need to connect an integration, create a group, and give the group access to a resource in the integration.

Sign into Oblique

Section titled “Sign into Oblique”

Authenticate to Oblique using your existing SSO provider.

For your instance at us.oblique.security or eu.oblique.security, select your identity provider, and log in.

Users are automatically created on login. The first user to log in is automatically made the Owner of your Oblique instance. All subsequent users are created as members.

Add an integration

Section titled “Add an integration”

Oblique integrates with your HRIS and IdP to sync users, user attributes, and resources. To get started, you’ll need to add an integration, such as Okta.

To add an Okta integration:

  1. Navigate to the Integrations page.
  2. Select Add integration.
  3. Select Okta.
  4. Enter the Okta domain base URI, such as https://example.okta.com, and API key, which starts with 00.
  5. Select Create integration.

Oblique will automatically start syncing users and user attributes from Okta, as well as sync Okta groups and apps as resources in “Pull” mode, which means that Okta remains the source of truth for these objects.

Create a group

Section titled “Create a group”

Groups are a way to group users together to manage access to resources. You can create either an attribute-based group or a team group.

To create a team group:

  1. Navigate to the Groups page.
  2. Select Add group.
  3. Select Team group.
  4. Under Display name, enter a name for the group.
  5. Under Members, select users to add as members of the group.
  6. Select Create group.

Manage a resource

Section titled “Manage a resource”

Oblique can manage resources in “Push” mode, which means that Oblique is the source of truth for these objects. This is enabled at the resource level, so that you can gradually take over management of resources from the integration.

To take over management of a resource:

  1. Navigate to the Resources page.
  2. Select the resource you want to manage.
  3. From the resource details page, under Management > Mode, select More, then select Push to Okta….
  4. Select Switch to push mode.

Oblique is now the source of truth for this resource, and will push any changes in access to Okta.

Grant a group or user access

Section titled “Grant a group or user access”

Access changes in Oblique are made through requests, such as adding or removing an entitlement.

To grant the group you created access to this resource:

  1. Navigate to the Request access page. If you know the attribute-based group, team group, or user to whom you want to grant access, or the resource you want to grant access to, you can also select Grant access from their detail page.
  2. Under Subjects, select the group you want to grant access to.
  3. Under Resource, select the resource you want to grant access to.
  4. (Optional) Under Expiration, select a duration for the entitlement. After this time, it will automatically expire and the subjects will lose access.
  5. (Optional) In the Review section**, review the checks needed to create this entitlement. Change the assigned reviewers if needed.
  6. Select Create request.

Requests from Oblique Admins or object owners are self-approved.

Once the request is approved, Oblique will flatten the set of users in the group and push the access change to Okta.