Skip to main content

New customer onboarding 🪴

important

Check if a new Legion stamp in the customer's region needs to be deployed

Create new org​

  1. Go to production west-us-2 mgmt console: https://usw2.legionsecurity.ai/mgmt/organization
  2. Create a new organization
    • Set org name to the customer's name
    • Add the correct backend url according to the customer's selected region
    • Add the list of admins to invite to the org
  3. Copy the new created support user email and password to 1Password
    • Save it under 'Dev' vault
    • The name of the saved credential should be in format Support user - <customer name>.
    • If customer organization requires 2FA, make sure to also save the TOTP secret in 1Password
  4. Enable MFA for the non-sso users in the org in WorkOS dashboard (follow the link presented in the mgmt console)
    • Go to https://dashboard.workos.com/environment_01JFVMZ7R9FXCWC3NEQM1GE5JN/organizations/{ORG_ID}
    • Edit organization policy, enabl MFA for non-sso users

Watch the demo of creating a new organization:​

Watch the demo

SSO​

  1. Add organization's domain in: Organization -> settings tab -> Edit Organization details -> Domain
  2. IMPORTANT !!! disable 'Automatic membership': Organization -> Features tab -> Domain Policy -> Uncheck "Automatically add users with any included email domains as members."
  3. Send admin portal invite to the organization admin for Single Sign On: Organization -> Features tab -> Invite an admin to set up this organization -> Invite Admin Note: do not send 'Domain verification' as part of the admin portal (we set it manually in step #1 above)

After organization is in place​

  1. Sign in with the internal support user to the webapp to verify the configuration

  2. Make sure the built in use cases are available in the workspace

    • IP investigation
    • URL investigation (Note: until we have a process to automatically add those, you'll have to add them manually, can use export and import feature)

  3. If not done during the org created step, invite users to the organization via Legion Webapp: Settings > Team members > Add user
    Notice: all users are added with member role by default. The first user to accept the invite will be promoted to admin role automatically. Then this user can promote other users to admin role as well.

  4. Once we know which tools the customer uses for case management, verify case creation time and TTA calculation work correctly in both recordings and automations on those tools