Versions Compared

Old Version 29

changes.mady.by.user Chad Fay

Saved on

compared with

New Version 30

changes.mady.by.user Chad Fay

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Markdown
1. Go to https://control.openpath.com/login and log in. To access the European Control Center, please go to https://control.eu.openpath.com/login
2. Under ![marketplace](https://info.openpath.com/hubfs/Openpath/images/kustomer-articles/icon-App-marketplace.png)App Marketplace > Get Apps, click on the Essential User Management or Premiere User Management tile, then click **Get App**
3. Under ![marketplace](https://info.openpath.com/hubfs/Openpath/images/kustomer-articles/icon-App-marketplace.png)App Marketplace > My Apps, click on the User Management app, then click **Microsoft Azure AD** 
![my apps IDP](https://info.openpath.com/hubfs/Openpath/images/kustomer-articles/myapps-idp.png)  
![select IDP](https://info.openpath.com/hubfs/Openpath/images/kustomer-articles/select-idp.png)
4. Microsoft will prompt you to sign in. Sign in with your Azure AD account credentials and allow Openpath to access your users and groups.

   1. **Note:** Openpath can only read data from your Azure account; it cannot write data or make any changes within Azure. The token Openpath uses only has read permissions for users, groups, and directory data in Azure. ![azure permissions](https://info.openpath.com/hubfs/images/kustomer-articles/azure-ad-permissions.png)
5. After signing in, you’ll be directed back to Openpath where you can enable the following settings:
    1. **Auto-sync every 1 hour/15 minutes** – this will sync Openpath with Azure AD once every hour or once every 15 minutes depending on which user management package you're using (see Administration > Account for package details)
    2. **Auto-create mobile credential** – this will create a mobile credential for every user.
    3. **Auto-create cloud key credential** – this will create a cloud key credential for every user.
    4. **Enable Single Sign-On (SSO)** for users with portal access – this will let users log into the Control Center with their Azure credentials.
    5. **Only import users from groups that have an Openpath group mapping** — if this is enabled, no users will be imported from Azure if they are not assigned to an Openpath group
    6. **Auto-remove users from groups** — this will remove users from Openpath groups if they no longer exist in Azure groups
6. To map a specific group from Azure to Openpath (required if you enabled **Only import users from groups that have an Openpath group mapping)**, click **+Create Group Mapping**
    1. Select the group from Azure
    2. Select the group from Openpath
    3. Click **+Create Group Mapping**
7. Repeat step 6 until all groups that need to be mapped have been created  
![create group mapping](https://info.openpath.com/hubfs/images/kustomer-articles/create-group-mapping.png).  
After saving, you now have the option to **Manually Sync**. You can perform this action at any time by clicking the **Synchronize** button on the Azure AD settings page.  
![app marketplace azure sync](https://info.openpath.com/hubfs/images/kustomer-articles/azure-resync.png)

...