Make sure your company uses cloud based Azure AD.
Currently, we do not support on-prem Azure AD, hybrid environment or AD B2C.
Why set up provisioning?
Improve the HR - IT flow with provisioning's auto-sync capabilities that automatically update changes, create accounts for new hires, or close accounts for terminated employees.
When is the user created in Azure AD?
Based on the configuration, bob can create the user once the user's profile has been created in bob.
Default user field mapping
You define how bob employee fields will be mapped to Azure fields. The synchronisation of user information will be according to the user field mappings you define. The below table shows the default field mappings:
What information does bob need to set up the integration?
In order to activate the provisioning process, bob requires the following:
- Application ID
- API key
- Tenant name for the Azure AD account
Note that an application needs to be created (see "Create an Azure Active Directory application").
Don't know how to get the above? Follow this link for additional information on how to obtain the app ID and how to generate the API authentication key.
You will need to provide permissions in order for the integration to work (for additional information, click here):
- Select Settings > Required permissions and click 'Add'
- Now, select an API and Microsoft Graph
- Application Permissions
- Select the Directory.ReadWrite.All permission
- Click done
- In the Required permissions panel, click the Grant permissions button.
Setting up Azure AD provisioning in the bob app
Go to Settings > Integrations tab > Provisioning > Azure AD.
Copy the Application ID (client id), API key (secret) and Tenant name of your Azure AD account into the Azure AD provisioning configuration.
Note that the default password should comply with your Azure AD password policy.
Click save to finish the integration setup.
Need more help? If you're unsure about anything please send us a message through the chat icon below.