# User Provisioning from Azure AD
### Enable User Provisioning
To enable automatic user provisioning from Azure AD to TrustLogix, follow these steps:
#### Step 1: Enable Auto Provisioning in TrustLogix
1. Navigate to existing Azure AD SSO Integration item.
2. Click the **Enable Auto Provisioning** button in TrustLogix.
3. TrustLogix will generate a **SCIM URL** and a **Bearer Token**.
4. Copy the **SCIM URL** and **Bearer Token** for use in Azure AD.
#### Step 2: Configure Provisioning in Azure AD
1. Navigate to **Provisioning** under **Manage** in the Azure AD application (This could be the same SSO application created in Azure AD for TrustLogix Integration).
2. Click on "New Configuration" button 
.
3. Configure the connection using the details from TrustLogix Console:
* **Tenant URL (SCIM URL)**
* **Secret token (SCIM Token)** (prefix with `Bearer` , e.g., `Bearer eyJhbGciOiJIUzUxMiJ9.eyJzdW***`)
* Disable the Groups Provision check box under the Mappings 
4. Test the connection.
5. After a successful connection, create the provisioning setup.
6. Navigate to **Users and Groups** and assign the users or groups to TrustLogix SSO Application.
#### Step 3: Start Provisioning
1. Go to **Overview (Preview)** in Azure AD.
2. Click **Start Provisioning**.
3. User provisioning occurs every **40 minutes** for newly assigned users.
***
### Notes
* If **Auto User Provisioning is disabled**, customers must manually create users in TrustLogix with their Azure AD email ID and assign roles.
* If **Auto User Provisioning is enabled**, new users or groups assigned in Azure AD will be automatically created in TrustLogix **without roles**.
* A **Super Admin** must manually assign TrustLogix roles to newly provisioned users.
By following these steps, TrustLogix will be successfully integrated with Azure AD for SSO and automatic user provisioning.
### References
* Regenerate SCIM token on expiration: