Add Azure AD/Microsoft Entra ID IdP Users/User Groups

Before you begin

Establish a connection between your Azure AD/Microsoft Entra ID service and SOTI Identity.

About this task

Efficiently manage user integration by establishing a connection between your Azure AD/Microsoft Entra ID service and SOTI Identity. This process allows you to add Azure AD/Microsoft Entra ID users or user groups to your SOTI Identity configuration.

To add Azure AD/Microsoft Entra ID users or user groups to SOTI Identity:

Procedure

  1. In the SOTI Identity Admin Console, open the main menu and select Users.
  2. At the top of the Admin Console, select an Azure AD/Microsoft Entra ID directory from the dropdown menu then select Users. The list displays all users.
  3. Select New User/User Group in the upper-right corner of the console.
  4. Select Add to open the Azure AD/Microsoft Entra ID User/Group search field.
  5. In the search field, start typing to find users or groups in the Azure AD/Microsoft Entra ID connection.
  6. Select the user or group to add it to the list of new users/groups.
    Note: Azure AD/Microsoft Entra ID tokens expire periodically. If you try to add an Azure AD/Microsoft Entra ID user or group with an expired token, the action redirects you to the Azure AD/Microsoft Entra ID IdP setting dialog box. You can re-authenticate the connection in the Azure AD/Microsoft Entra ID IdP setting dialog box. After the token renews, you can continue adding users or groups.
  7. Optional: Make the user or group a SOTI Identity account administrator. Leave unselected if the user only needs access to other SOTI ONE applications.
    Note: Account administrators can manage and change all settings in your SOTI Identity console and account so you should be careful who you make an account administrator.

    If you add a group, users within that group keep any roles assigned directly and inherit the roles from the group.

  8. Repeat to add more users or groups.
    To remove a user or group, hover over its row and select Delete.
  9. Select Add to add the IdP users or groups to SOTI Identity.
    Note: User/group information does not synchronize in real-time between Azure and SOTI Identity. Deleting or adding a new user in Azure does not make the same changes in SOTI Identity.

Results

The IdP users appear in the Users list. The name of the IdP connection gets added to user and group names. For example, Sarah from the "Green" Azure AD/Microsoft Entra ID connection appears as Green\Sarah in the Users list.