Skip to main content

Importing Users from Azure Active Directory

How to import Users from Azure Active Directory

A
Written by Ashok P
Updated over a month ago

Once you have enabled the Azure Active Directory (AAD) integration for SI, you can import users from AAD into SI or link existing SI users to users in AAD.

SI integration with AAD allows you to log into SI using the same credentials as AAD, providing a Single Sign-On option. This means that no passwords are created or stored in SI, adding a layer of security.

Import Users

To import users:

1/ Go to the Control Panel.

start menu.jpg

2/ Double-click the Users icon.

1/ Go to the Control Panel.

start menu.jpg

2/ Double-click the Users icon.

control panel.jpg

3/ On the Manage Users form, click the Import button in the Azure Active Directory section of the ribbon.

import button.png

This will open the Import Users From Azure Active Directory form. You can select one or more users to import into SI. 

It is good practice to import "similar types" of users in one import operation based on their role in AAD. This is because you will need to assign them to an SI user group with a common set of permissions and a role in the next step.

In the next import operation, select users with a different role so that they can be assigned a different user group and role in SI.

import users from aad.png

4/ Once you have selected the users, click Import or Import and Close.

5/ In the Import Users Options dialog, assign a user group and role to the imported users.

import users options.png

Once the users are imported to SI, they will receive an email with a link to download and install the SI client and their login information.

email.png

Link User

If you already have users set up in SI and then decide to integrate with AAD, you can link the SI user to an AAD user.

To link a user:

1/ Select the SI user and click the Link button in the Azure Active Directory section of the ribbon.

link button.png

2/ Select the user in AAD and click the Link button.

link user to aad form.png

Once a user has been imported from AAD or linked to an AAD user, no passwords are stored in SI.

User Sign-In

When the linked user opens SI, depending on previous settings, they may be prompted with a message similar to this.

prompt that user is connected to aad.png

They need to click OK and then tick the Connect via Azure Active Directory check box before attempting to sign in.

connect via aad checkbox.png

When they click the Connect button, they will be:

  • Prompted to choose their AAD account from the list (depending on how long your organization has set up AAD sign-ins to persist)

  • Prompted to enter their AAD account (email address), password, and whatever Multi-Factor Authentication (MFA) has been configured in AAD.

pick an account.png

Sync Users

If you want to sync the name, email, username, and mobile numbers fields of a linked user from AAD to SI, click the Sync button in the Azure Active Directory section of the ribbon.

sync aad.png

aad sync message.png

After the sync, any users marked inactive in AAD will be marked inactive in SI.

Did this answer your question?