User Provisioning from Azure AD

Enable User Provisioning

To enable automatic user provisioning from Azure AD to TrustLogix, follow these steps:

Step 1: Enable Auto Provisioning in TrustLogix

1. Navigate to existing Azure AD SSO Integration item.

2. Click the Enable Auto Provisioning button in TrustLogix.

3. TrustLogix will generate a SCIM URL and a Bearer Token.

4. Copy the SCIM URL and Bearer Token for use in Azure AD.

Step 2: Configure Provisioning in Azure AD

1. Navigate to Provisioning under Manage in the Azure AD application (This could be the same SSO application created in Azure AD for TrustLogix Integration).

2. Click on "New Configuration" button .

3. Configure the connection using the details from TrustLogix Console:

   • Tenant URL (SCIM URL)

   • Secret token (SCIM Token) (prefix with Bearer , e.g., Bearer eyJhbGciOiJIUzUxMiJ9.eyJzdW***)

   • Disable the Groups Provision check box under the Mappings

4. Test the connection.

5. After a successful connection, create the provisioning setup.

6. Navigate to Users and Groups and assign the users or groups to TrustLogix SSO Application.

Step 3: Start Provisioning

1. Go to Overview (Preview) in Azure AD.

2. Click Start Provisioning.

3. User provisioning occurs every 40 minutes for newly assigned users.

Notes

• If Auto User Provisioning is disabled, customers must manually create users in TrustLogix with their Azure AD email ID and assign roles.

• If Auto User Provisioning is enabled, new users or groups assigned in Azure AD will be automatically created in TrustLogix without roles.

• A Super Admin must manually assign TrustLogix roles to newly provisioned users.

By following these steps, TrustLogix will be successfully integrated with Azure AD for SSO and automatic user provisioning.

References

• Regenerate SCIM token on expiration: https://docs.trustlogix.io/integrations/single-sign-on/generate-scim-token