SaaS Integration Guide
1Password
AKASHI
AWS IAM Identity Center
Acall
Active! gate SS
Adobe CC (Enterprise plan)
AirCourse
Airtable
Amazon Business
Amazon Web Services (AWS)
Amplitude
App Store Connect
AppFigures
AppsFlyer
Asana
Ashita_cloud
Atlassian
Autodesk
Awesome Screenshot
Backlog
BambooHR
Basecamp
Bitbucket
Bitdefender
Bitrise
Bitwarden
Biz Storage fileshare
Board
Box
Brabio!
Cacoo
Calendly
Canny
Canva
Channel
ChatGPT
Chatwork
Cisco Meraki
ClickUp
Cloud CIRCUS
Cloud sign
Cloudflare
Codecov
Collaboflow
Confluence
Contentful
ContractS CLM
Coopel
Create! Web Flow
Crowdstrike
Cybozu
Datadog
DatoCMS
DeepL
DeployGate
Dialpad
DirectCloud
Discord
DocSend
Docbase
Docker
DocuSign
Domo
Dropbox Business
Dropbox Sign
Esa
Exment
Expensify
FastAnswer2
Fastly
Figma
Flyle
Fontworks
Formrun
Freshchat
Freshdesk
Freshservice
GMO Sign
Garoon
Ghost
GigaCC
GitHub
GitKraken
GitLab
Google Cloud Platform
Google Drive with Service Account
Google Tag Manager
Google Workspace
HENNGE One
HERP Hire
HRBrain Talent Management
HRMOS Talent Management
HRMOS adopts
HRMOS diligence and indolence
HackMD
HaloPSA
Heap
Heroku
Honeybadger
HotProfile
HubSpot
Hubble
Huntress
ISM CloudOne
InVision
Intercom
Jamf
Jetbrains
Job Can Recruitment Management
Job Kan Attendance Management
Job Kan Labor HR
KARTE
KING OF TIME
Kamon
Kaonavi
Keeper Enterprise
Kibela
Kincone
Kintone (Japanese version)
LINE WORKS (OAuth linkage)
Lastpass
List of supported SaaS
Looker
Loom
Lucidchart
Lumin
Lychee Redmine
MAJOR FLOW Z
Mail Dealer
Mailtrap
Marketo Engage
Mekari Journal
Meta Ads Manager
Metabase
MicroCMS
Microsoft 365
Microsoft Entra ID (Azure AD)
Microsoft Intune
Microsoft Teams
MiiTel
Miro
Money Forward Admina
Money Forward Cloud Accounting
Money Forward Cloud Accounting Plus
Money Forward Cloud Agreement
Money Forward Cloud Attendance
Money Forward Cloud Expense
Money Forward Cloud Fixed Assets
Money Forward Cloud Invoice
Money Forward Cloud Payroll
Money Forward Cloud payable
Money Forward Pay for Business
Mural
My Redmine
NEXT ENGINE
NI Collabo 360
Netlify
Netsuite
New Relic
NinjaMock
NinjaOne RMM
NotePM
Notion
Okta
OneDrive
Onelogin
Openlogi
OpsRamp
Overflow
PHONE APPLI PEOPLE
PagerDuty
Percy
Pipedrive
Postman
Productboard
Quay
Questetra
Quickbooks
Re:lation
Receptionist
Recruitment batch Kanrikun
Redash
Reftab
Rollbar
SECURE DELIVER
Salesforce
Sansan
Save Point
Seculio
SecureNavi
SendGrid
Sentry
ServiceNow
Shopify
Signavio
Site24x7
Sketch
Slack
Slido
Smaregi Time Card
SmartHR
Smartsheet
Snowflake
Snyk
SonarCloud
Splashtop Enterprise
Square
Studio
Sumareji
TOYOKUMO Safety Confirmation Service 2
Tableau
Tareru Dokodemo Cabinet
TeamGantt
TeamSpirit
Teamwork
Terraform Cloud
Todoist
Toggl track
TrackJS
Transifex
Trello
Trimble
Trust Login by GMO
Twilio
Typeform
Unipos
Unity
Vercel
Vimeo
Wantedly
Webex by CISCO
Webflow
Whimsical
Wistia
WithSecure
Wix
Wordpress
Wordpress self-host (API)
Workable
Workplace from Meta
Wrike
Xero
YarakuZen
Yayoi My Portal
YouCanBook.me
Zaico
Zapier
Zendesk
Zenhub
Zeplin
Zoho CRM
Zoho People
Zoom
bakuraku series
dbt Cloud
direct
fondesk
freee HR
freee accounting
freee sign (formerly NINJA SIGN)
hotjar
invox
job can payroll
job can workflow
kickflow
kintone (global version)
monday.com
oVice
oplus
raku raku sales
smartround
trocco
What's New
Tutorial
0. Getting Started
1. Account Creation and Initialization
2. Employee Master Setup
3. Cost Management Setup
4. Integrating SaaS
5. Setup Billing
SaaS Management
Billing
Check SaaS license status
Custom Apps(Manual Integration)
How can I learn more about how to work with cloud services?
How to link cloud services managed by other business divisions and departments?
Integration Log Function
Inviting other users
Need to stop the integrated service
Request an unsupported SaaS or feature to be added
Troubleshooting failed integrations
User Type Judgment Criteria: Quick Reference
Shadow IT
Admina Browser Extention for Microsoft Edge
How to setup Admina Browser Extension
Shadow IT Detection
The detail of Shadow IT detection
Retired Account
About alert types
Account Provisioning (register a new SaaS account)
Alert Mute
Delete/deactivate an account in the Admina by Money Forward
Do you have a retired account left?
Export account data
Manage former employee accounts (Employee offboarding)
Note on possible data loss when deleting a cloud service account
Retired account export
Slack Notification Settings
What is Last Activity
Cost Management
Analyze the cost situation (Insight)
Check the payment status of SaaS
Cost Management with CSV Data
Manage SaaS contract dates
Manage SaaS invoices and receipts
Use cost management β
Manage public files
Device Management
Device features FAQ
How to create a device ledger CSV for import
List of management items
Use device functions
FAQ
Can I use two-factor authentication (2FA) to log into Money Forward Admina?
Deleted users in Google Analytics remain in Money Forward Admina
How to get an account with Jira, Confluence, Trello, etc.
I want to change my Money Forward Admina login password
If you link with the Money Forward Cloud Series, you will receive a security notification email
Integration procedures when 2FA (two-factor authentication) is enabled
New Admina Role
To change your Money Forward Admina billing address
User name display (acquisition criteria)
What happens if the person who linked the cloud service retires?
What if IP address restrictions are applied on the SaaS side?
[Integration Error] Authentication error occurs when login using Google Authentication or SSO.
Others
Table of Contents
- All Categories
- SaaS Integration Guide
- AWS IAM Identity Center
AWS IAM Identity Center
Updated
by Yasuhiro Miyoshi
Preparation
Step1: How to make the AWS policy
- Login to Identity and Access Management (IAM)、click on "Create Policy" from Policies in the left menu.
- On the Create Policy screen, click the JSON tab and overwrite the following script
{
"Version": "2012-10-17",
"Statement": [
{
"Sid": "VisualEditor0",
"Effect": "Allow",
"Action": [
"identitystore:ListGroupMemberships",
"sso:ListAccountAssignmentsForPrincipal",
"organizations:ListAccounts",
"sso:ListPermissionSets",
"identitystore:ListUsers",
"sso:ListInstances",
"identitystore:ListGroups",
"sso:DescribePermissionSet"
],
"Resource": "*"
}
]
}- Enter a name for the role and click "Create Policy" to save.
Step2:How to make the Role
- Identity and Access Management (IAM) and click Roles > Create Role in the left menu.
- In Select Trusted Entities, enter each value as follows.
- Trusted entity:AWS account
- An AWS account:Select 「Another AWS account」and Enter
162001151631in Account ID - Check the box of Require external ID (Best practice when a third party will assume this role)
- Enter
a random string (24 or more digits recommended)for the external ID. - no need MFA
Click, NEXT
- Select the policy created in Step 1 and click Next.
- Set a role name and click "Create Role".
Step3: How to get Role ARN
- Search for and display the roles created on the Roles screen, and click on them.
- The Role ARN will be displayed, copy and save it.
Step4: How to get Region and Workspace Key
Go to IAM Identitiy Center > Settings, copy and save the Region and Identity store ID
Setup Integration
On the Money Forward Admina integration screen, search for AWS IAM Identity Center.
Enter the workspace key, region, and Role ARN obtained in the previous step, as well as the external ID set when creating the role, and click Integrate.
If the integration with AWS IAM Identity Center is successful, the registered user information will appear in the account list.
If the integration does not complete successfully, please edit the status tab on the integration screen and try integrating again.
If the problem persists, please contact us via chat.🙏
