Follow these instructions to configure auto-provisioning after setting up Azure Active Directory (AD), or Entra ID. This setup allows for the automated creation, update, and deletion of user accounts in your intranet platform.
The following process will take 1-2 hours to complete. Before you start, ensure you have administrative access to your Azure portal and Axero and have completed steps 1-3 of the Azure AD SSO Setup Guide.
Log into the Azure portal as an administrator.
Navigate to Enterprise applications and select your SSO application.
Click Provisioning in the application menu.
Select Get started to initiate the setup.
Change the Provisioning Mode to Automatic to enable automatic user provisioning.
Click to expand the Admin Credentials section.
In the Tenant URL field, enter your intranet's URL followed by /api/scim/v2. Examples include https://mycompany.communifire.com/api/scim/v2 and https://mycompany.com/api/scim/v2.
/api/scim/v2
Open a new browser tab and log into your Axero site.
Go to Control Panel > System > Single Sign-On.
Click to show the SCIM User Provisioning area and copy the Bearer token.
Switch back to Azure and paste the token into the Secret Token field.
Click Test Connection to ensure the settings are correct.
After confirming the successful connection, click Save and close the page.
Return to the Provisioning page and click Edit attribute mappings.
Open the Mappings section and click Provision Microsoft Entra ID Groups.
Select No for Enabled, and confirm by clicking Save.
Click Yes to acknowledge, then close the page.
Click Provision Microsoft Entra ID Users.
Edit the externalId to mailNickname mapping.
externalId
mailNickname
Change the Source attribute to objectId.
objectId
Click Ok to confirm.
Below is a list of the default SCIM attributes in Azure.
You can add custom attributes to import additional user data:
After clicking Provision Microsoft Entra ID Users in the previous step, select Show advanced options.
Click Edit attribute list for customappsso.
At the bottom of the attribute list, enter new attributes.
Click Save. Click Yes to confirm.
Mapping type: Select Direct.
Source attribute: Select the Azure AD attribute.
Target attribute: Select the outgoing attribute.
Match objects using this attribute: Select No.
Apply this mapping: Select Always.
Click Ok to save the mapping.
Once all mappings have been added, click Save and Yes to confirm.
Return to Axero and go to Control Panel > System > Single Sign-On.
Click the Data Mapping tab and select SCIM.
Ensure the property names are identical to the attribute names in Azure and are mapped to the correct user profile fields. When you are done, click Update.
Click System > Advanced System Utilities.
Click Restart Site.
Return to the Provisioning section.
Click Start provisioning.
Completing these steps ensures the successful implementation of auto-provisioning, enhancing the efficiency of user account management within your infrastructure.
is requesting access to a wiki that you have locked: https://my.axerosolutions.com/spaces/5/communifire-documentation/wiki/view/101874/setup-guide-azure-ad-auto-provisioning?locale=en-US%252525252525252525252525252f1%252525252525252525252525252f%252525252525252525252525253fact%252525252525252525252525253d1%252525252525252525252525252f%252525252525252525252525253fSpaceID%252525252525252525252525253d5
Your session has expired. You are being logged out.