Coupa

Configuring the Veza integration for Coupa

Overview

The Veza-built connector for Coupa enables discovery of a single Coupa instance, including details for each user and their group and role memberships.

See notes and supported entities for more details.

Configuring Coupa

To connect to Coupa’s REST API, Veza uses Oauth2 authentication based on a client id and secret. To generate a new client and credentials, log into Coupa as an admin user:

Go to Setup > Oauth2/OpenID Connect Clients
Click Create and pick Client Credentials for the Grant type
Enter the required fields and enable the scope:
- core.users.read
Save the Client and note the Client Identifier and Client Secret

See the Coupa documentation for more details.

Configuring Coupa on the Veza Platform

In Veza, open the Integrations page.
Click Add New and pick Coupa as the type of integration to add
Enter the required information and Save the configuration

Field	Notes
Coupa URL	URL of the instance to connect to
Coupa Client Identifier	Oath Client ID
Coupa Client Secret	Oath Client Secret

Field

Notes

Coupa URL

URL of the instance to connect to

Coupa Client Identifier

Oath Client ID

Coupa Client Secret

Oath Client Secret

Notes and Supported Entities

Coupa REST API does not support returning role permission information. All Local Roles created for Coupa roles are populated with a single permission named for the role that is Uncategorized.

Coupa has multiple different types of Groups, each group is mapped to a “Local Group” with a group_type property set to indicate its type. Veza currently collects User, Account and Content groups.

No resources are collected.

Coupa User

Attribute Notes

Attribute	Notes
`authentication_method`	Authentication method user signs in by
`created_at`	Time the user was created at
`email`	Email address associated with User
`invoice_approval_limit_amount`	Numeric value for invoice approval limit if set on User
`is_active`	True if the user is active
`login`	User's login
`requisition_approval_limit_amount`	Numeric value for requisition approval limit if set on User
`requisition_self_approval_limit_amount`	Numeric value for requisition self approval limit if set on User

authentication_method

Authentication method user signs in by

created_at

Time the user was created at

email

Email address associated with User

invoice_approval_limit_amount

Numeric value for invoice approval limit if set on User

is_active

True if the user is active

login

User's login

requisition_approval_limit_amount

Numeric value for requisition approval limit if set on User

requisition_self_approval_limit_amount

Numeric value for requisition self approval limit if set on User

Coupa Group

Attribute Notes

Attribute	Notes
`group_type`	What type of group the local group is
`is_active`	True if the group is active

group_type

What type of group the local group is

is_active

True if the group is active

Coupa Role

Attribute Notes

Attribute	Notes
`description`	Description from role
`omnipotent`	True if Coupa role is omnipotent
`system_role`	True if Coupa role is a system role

description

Description from role

omnipotent

True if Coupa role is omnipotent

system_role

True if Coupa role is a system role

PreviousConfluent NextCrowdstrike Falcon

Last updated 2 months ago