Azure Active Directory integration beta program
- Push new users from Azure AD to StarLeaf
- Push user updates from Azure AD to StarLeaf
- Push user deactivation from Azure AD to StarLeaf
|Azure AD integration is in beta development and is still undergoing testing. We strongly discourage the deployment of this in your production environment. StarLeaf will not be liable for any loss, either direct or indirect, suffered as a result of deploying this feature in your production environment and services.|
- Log in to the Azure portal https://portal.azure.com .
- Go to Azure Active Directory > Enterprise applications > Add an application -> Non-gallery application.
- Give the application a name and choose Add.
- In the new application:
- Configure Mappings so that the table looks like this:
Azure AD attribute Customapp attribute matching precedence Compulsory attributes mailNickname externalId 1 userPrincipalName username 2 Not([IsSoftDeleted]) active userPrincipalName emails[type eq “work”].value The following attributes are dependent on your AD configuration, but will include some of: givenName name.givenName surname name.familyName displayName name.formatted mobile phoneNumbers[type eq “mobile”] telephoneNumber phoneNumbers[type eq “work”] preferredLanguage preferredLanguage
Troubleshooting and tips
If you think your access token has been compromised, you must create a new token. In the StarLeaf Portal, go to the Azure Active Directory Integrationand select Regenerate access token and click . You must enter the new token in Azure AD as the Secret Token.email@example.com with any feedback you might have.