Use a Microsoft Azure Office 365 connection to enable provisioning from PingOne to the Microsoft Azure identity platform.
You should review the information about registering applications with the Microsoft Azure identity platform. See Register an application with the Microsoft identity platform.
Make sure that you have:
- An Azure account that has an active subscription. See Create your Azure Free account.
- The tenant domain ID for the Azure account. You can find the tenant domain in the Azure portal. Go to the application properties and select View endpoints. Copy the ID from the URL under Windows Azure AD Graph API Endpoint.
- The client ID and client secret for the connected application. You can find the client ID and client secret in the Azure portal. See Register an application with the Microsoft identity platform.
- The following application permissions in your application. See Add permissions to access web APIs:
Application.ReadWrite.All
Organization.Read.All
User.ReadWrite.All
The Azure Office 365 provisioning connection is complete and is added to the list of provisioning connections on the Provisioning page.
Note:
When you create the provisioning rule, make sure that you map a value for the
Password
attribute. You must map a value for
Password
before you can enable the rule. For more
information, see Adding attribute mapping for outbound provisioning.