Syncing Users with Azure Active Directory

  • 21 April 2023
  • 0 replies
  • 530 views
Sparky
Userlevel 4
Badge
  • Sparky
  • NEOGOV Community Manager
  • 0 replies

SUMMARY

Synchronizing your users in PowerDMS is an important step to getting your system up and running. This article will show you how to synchronize using Azure Active Directory.

CONTENT

 

Synchronizing Users

 

Note: If you currently use another sync method or already have users in your site, contact PowerDMS Support at 800.749.5104 or support@powerdms.com before implementing Azure sync.

 

  1. Select Administration Menu from the drop-down menu under your name in the upper right corner of your screen. 

  2. From the menu that appears, navigate to User Sync, enter the forms-based credentials for a Master Administrator account, and click Request JWT Token.

  3. Copy this token value for later use.

 

image.png

 

  1. In your Azure tenant, navigate to Azure Active Directory and select Enterprise Applications. Click the New Application button. 

 

image.png


 

  1. Tap Create your application.


 

image.png

 

  1. Provide a name for the application and select the radio button next to Integrate any other application you don't find in the gallery (Non-gallery)
     

 

image.png

 

  1. After you build the application, navigate back to the Enterprise Applications list, select Provisioning under the Manage menu on the left side of your screen, then click the Get Started button.

 

image.png

 

  1. On the next page, select Automatic from the Provisioning Mode drop-down menu. Enter the following as the tenant URL: https://api.powerdms.com/v1/proxy/scimapi/scim andthe JWT token you copied from your Administration Menu > User Sync > page into the Secret Token field, then click the Test Connection button.


     

image.png


 

  1. After the test concludes successfully, click Save. If the test fails, return to the Administration Menu > User Sync page to generate a new JWT token.

You can enter an email address under Settings to be notified of a provisioning failure.



 

image.png

 

  1. Next, expand Mappings and click Provision Azure Active Directory Users.


 

image.png



 

  1. Under Target Object Actions, uncheck the Delete option.


 

image.png


 

  1. Under Attribute Mappings, delete the following attributes (your SCIM schema does not support these):

  • preferred language

  • employeeId

  • department

  • manager

 


 

image.png


 

  1. Click Save and navigate back to the top level of the Enterprise Application. Under the Manage menu, select Users and Groups, then click the Add user/group button.

 

 

image.png

 

 

  1. Click the None Selected hyperlink to bring up the Group/User picker. In this pane, select the groups to be synced into PowerDMS.

 

image.png

 

  1. Repeat step 14 until you've selected all groups.


 

image.png


 

  1. When you're finished picking groups, click Select, Assignand then navigate to your Manage menu. Select Provisioning, then click the Start Provisioning button. It may take up to 40 minutes before Azure begins the user provisioning process.



     

image.png

 

 

RELATED ARTICLES

Article:  PowerDMS Azure AD Application Configuration

SECURITY REQUIRED

Site Administrator

 

 

 

This topic has been closed for comments
Terms & ConditionsCookie settings