Azure Active Directory Automation

Organizations

About the Azure Active Directory Automation

With Azure Active Directory (AAD) automation, you can automatically import AAD members and teams into your organization. Furthermore, you can define the organization role (collaborator or reader) the members will have once they're imported. 

With Azure Active Directory (AAD) automation, you can import members and teams from AAD and provide them with single sign-on (SSO) to Enalyzer.

Create the AAD Automation

To add the AAD automation, you have to:

  1. Go to the automations area () and select Enalyzer.
  2. Click on the add automation button and choose Azure Active Directory.
  3. Log into your Microsoft account. You need to have admin rights to connect to Enalyzer.
  4. Enalyzer will request permission. Accept the request to proceed.
  5. You'll be sent back to Enalyzer where you have to map the fields by linking the variables from Microsoft AAD on the right to the organization member variables on the left. If there is an AAD variable you don't want to map, select the skip option. Once you're done mapping, click next.
  6. Name your automation.
  7. Select the default organization role for imported members, i.e. the imported members will be given the selected role in your organization.
  8. If you want to import your AAD team structure into your organization, enable the team synchronization setting. This means in the event of any subteams in AAD, these will be added subteams in your organization.
  9. Finally, select the AAD teams you want to import to your organization by searching for them. When you're done, click next.
  10. You'll receive an overview of the number of members you're about to import. Click connect now to finish setting up your automation.
  11. You're done. The automation runs every 15 minutes, so it will continue to import new members from your AAD.

You have to be an organization administrator to enable automation. Collaborators can create but not enable them.

If the automation owner stops being an organization administrator, the automation will be disabled automatically.

Require AAD Login for Members

Organization administrators can enforce AAD log-in for members, ensuring that access to the organization's content is secure and controlled through AAD.

To enable this setting, administrators must be logged into Enalyzer using AAD. After that, all you have to do is:

  1. Go to the homepage and click on your organization.
  2. Click on settings on the side menu.
  3. Enable the require login with AAD setting. The TenantID of the AAD used by the administrator will be automatically added and cannot be removed.

The AAD requirement will also be enforced in special login cases like Zapier.

Receive Error Notifications

You can set up email notifications for yourself and others to receive if your automation fails. To enable error notifications for you and others, you have to:

  1. Go to the automations area () and select Enalyzer.
  2. Click on your automation, scroll down and enable email notifications.
  3. If you want to add your colleagues or other stakeholders, click on add recipient and enter their email. Your changes will be saved automatically.

Delete Automation

To delete your automation, you have to:

  1. Go to the automations area () and select Enalyzer.
  2. Click on your automation, scroll down and click delete automation.

Deleting the automation does not delete the imported members or teams.

FAQs

  • No. Changing the default organization role in the automation will not change the role of the members that already have been imported, only those imported after the change.

  • AAD uses a graph structure, whereas Enalyzer uses a tree structure. A graph structure works like a network model, where team relationships can be circular. A tree structure works like a hierarchical structure, therefore, Enalyzer transforms the network model into a hierarchy of teams and subteams.

Was this article helpful?

0 out of 0 found this helpful