Overview
Our AzureAD Integration will allow you to link up AzureAD users with Invarosoft user records to facilitate automated & SSO login functionalities of the Invarosoft product range.
Invarosoft & PSA user records will also be created for all AzureAD users our system finds in the AzureAD tenancy connected.
Basic Steps
The basic steps of this integration are.
- Run a PowerShell script to install the Invarosoft AzureAD Sync tool.
- Collect the output values from that PowerShell script and input them into the Invarosoft portal.
- Configure your PSA Sync settings (optional).
These do not differ based on the connection method apart from where inside the Invarosoft portal you collect the PowerShell scripts from and input the output values.
Connecting to a Customer Tenancy (DIRECT method)
The following instructions explain how to setup our AzureAD integration against a single customer tenancy.
- Login to the Invarosoft Portal
- Go to the Clients page and click the “AzureAD” button on the relevant client record.
- Select the “Direct Tenancy” radio button, then click the “Download PowerShell Script”. This will download a DIRECT method PowerShell script customised to the Invarosoft Client.
- Run the script locally on your computer. When you do this, you might be prompted to change your execution policy, you need to accept this change for the script to function. Feel free to review the script prior to execution if you are concerned.
- When prompted login using customer tenancy login credentials, these credentials are not stored but simply used to allow the script to establish an AzureAD Application inside your customers tenancy.
- After entering your credentials, the script will continue to run and as long as no errors are thrown you can trust it has completed successfully. The result should appear as follows outputting some key values.
- Copy the values output by the PowerShell script into the AzureAD tab on the Integration page in the portal then click “Save”. We recommend you review the Sync information section of this document before turning on “PSA Sync” settings at this point in time.
- The system will check the information you have entered. If they test successfully, you will a confirmation message and you will be presented with the following screen.
Invarosoft Sync Settings
Once you have connected a tenancy to an Invarosoft client the system will automatically start syncing the tenancies AzureAD users to the Invarosoft users.
This operation will result in the.
- linking to or
- creation & linking to
Invarosoft users (and PSA users if your partner is PSA connected).
The status of this sync operation can be found on the “Sync” tab under each clients AzureAD settings page.
In the event we are unable to successfully identify the matching user records they will be automatically linked. If we find close or multiple matching records they will be added to the “Pending Decision” list accessed under “User Intervention Records”.
This sync operation occurs every 24 hours or can be run on demand per client under Client > AzureAD > Sync.
PSA Sync Settings
Our AzureAD Integration allows you to maintain some key values in your PSA based on AzureAD information.
These key values are currently.
- First name
- Last name
These options are controlled by a inherited structure of settings, depending on how the individual client is connected (PARTNER or DIRECT method) this inheritance functions as follows;
PARTNER | DIRECT |
1. Setting in Integration > AzureAD | 1. Setting in Client > AzureAD > Sync |
2. Setting in Client > AzureAD > Sync |
|
In the case of a client connected via the PARTNER method the settings can be overridden by the setting in Client > AzureAD > Sync.
This sync operation occurs every 24 hours or can be run on demand per client under Client > AzureAD > Sync.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article