In this tutorial, you'll learn how to integrate introDus with Azure Active Directory (Azure AD). When you integrate introDus with Azure AD, you can:

  • Control in Azure AD which people in your organization has access to introDus.

  • Enable your users to login to introDus with their Azure AD account credentials.

  • Manage all your users in one central location - the Azure portal.

Prerequisites

To get started, you need the following items:

  • An Azure AD subscription. If you don't have a subscription, you can get one-month free trial here.

  • An introDus subscription that includes single sign-on (SSO).

Scenario description

In this tutorial, you configure and test Azure AD SSO in a test environment.

Adding introDus from the gallery

To configure the integration of introDus into Azure AD, you need to add introDus from the gallery to your list of managed SaaS apps.

  1. Sign in to the Azure portal using either a work or school account, or a personal Microsoft account.

  2. On the left navigation pane, select the Azure Active Directory service.

  3. Navigate to Enterprise Applications and then select All Applications.

  4. To add new application, select New application.

  5. In the Add from the gallery section, type introDus in the search box.

  6. Select introDus from results panel and then add the app. Wait a few seconds while the app is added to your tenant.

Configure and test User Provisioning

Once the application has been added to your Azure tenant, it is possible to configure the details of User Provisioning to suit your needs.

  1. Sign in to the Azure portal using either a work or school account, or a personal Microsoft account.

  2. On the left navigation pane, select the Azure Active Directory service.

  3. Navigate to Enterprise Applications and then select All Applications.

  4. Type introDus in the search box.

  5. Select introDus from results panel, which should open the details for the app.

Add users from Azure AD to introdus

  1. On the application details page, click on 1. Assign users and groups (or alternatively, click Users and groups in the left-side navigation panel)

  2. From here you can search for specific users and give them access to the introdus application. This is ideal for testing, before allowing all users access to introdus.

  3. Assuming we want to add all users: Navigate to Properties in the left-side navigation panel.

  4. From Properties, find the toggle labeled User assignment required? and set it to No. This will allow all users access to introdus, without being specifically configured.

For simplicity sake, we do recommend creating groups which contain the users that need access to introdus, and selecting this group from the Users and groups tab, even if the group is all employees.

Testing User Provisioning

Once a few users have been added to the application, we can go ahead and test that everything works as expected.

  1. First, navigate to Provisioning using the left-side navigation panel.

  2. From the Provisioning page, click on Provision on Demand

  3. On the new page, search for the user selected for the test in the search box. This has to be the same user as selected in Users and groups from the step above.

  4. Once found, select the user and click Provision. This should sync up the user with introdus.

  5. If Single Sign On is enabled, the user is now able to login to introdus, using their Azure AD Credentials

Configure and test Azure AD SSO

Configure and test Azure AD SSO with introDus using a test user called B.Simon. For SSO to work, you need to establish a link relationship between an Azure AD user and the related user in introDus.

To configure and test Azure AD SSO with introDus, perform the following steps:

  1. Follow the section above to Configure and test User Provisioning

  2. Test SSO - to verify whether the configuration works.

By default, all users in the organization will be SSO enabled.

SP initiated:

  • Click on Test this application in Azure portal. This will redirect to introdus Sign on URL where you can initiate the login flow.

  • Go to introdus Sign-on URL directly and initiate the login flow from there.

IDP initiated:

  • Click on Test this application in Azure portal and you should be automatically signed in to the introdus account for which you set up the SSO.

You can also use Microsoft My Apps to test the application in any mode. When you click the introdus tile in the My Apps, if configured in SP mode you would be redirected to the application sign on page for initiating the login flow and if configured in IDP mode, you should be automatically signed in to the introdus for which you set up the SSO. For more information about the My Apps, see Introduction to the My Apps.


Did this answer your question?