Add an Azure AD/Microsoft Entra ID Connection

Before you begin

You must be an Azure AD/Microsoft Entra ID administrator and be able to edit your Azure AD/Microsoft Entra ID settings.

Make sure you have a verified domain to use with this connection.

About this task

To add an Azure AD/Microsoft Entra ID connection to SOTI Identity:

Procedure

  1. In the SOTI Identity Admin Console, open the main menu and select Directories/IDP.
    You can also add an Azure AD/Microsoft Entra ID connection from the Users view. Select New Group/Directory and select IdP Connection.
  2. Select New Directory > IdP Connection to open the Create Connection dialog box.
  3. Select Azure AD/Microsoft Entra ID.
  4. Enter a Connection Name for the Azure AD/Microsoft Entra ID connection.
    Connection names may only include alphabetic and numeric characters and cannot be longer than 100 characters.

    Each Azure AD/Microsoft Entra ID connection name must be unique within the SOTI Identity console.

  5. Add at least one domain from the Select Domain list.
    Domains control who can (or cannot) log into a SOTI Identity account and its associated applications. Each Azure AD/Microsoft Entra ID connection is mapped to at least one domain to help administrators identify the connection.

    Only verified domains appear in this list. If you have not set up a verified domain yet, select Manage Domains. The page redirects to the Domains view where you can add and verify domains. Your current draft connection is lost.

  6. Select Authenticate.
    The Azure AD/Microsoft Entra ID portal opens in a new browser window.
  7. In the Azure AD/Microsoft Entra ID portal, enter the credentials for the Azure AD/Microsoft Entra ID account you are using to add this connection to SOTI Identity.
    The Azure AD/Microsoft Entra ID account must be an administrator.
  8. Select Consent on behalf of your organization to grant SOTI Identity the permissions that it requires from your Azure AD/Microsoft Entra ID connection.
    Note: The administrator must approve requested permissions for both delegated and application permissions.
    Once Microsoft verifies the account and confirms it has the necessary permissions, the Azure AD/Microsoft Entra ID portal browser window closes and returns to the SOTI Identity console.

Results

The new Azure AD/Microsoft Entra ID connection appears in the Directories List where you can update it at any time.

What to do next

Add your users to SOTI Identity and assign them to applications.