Entra ID user source

Overview

You can connect Entra ID cloud directory to idemeum so that technicians are onboarded with Entra ID identities. You do not have to create user record manually.

How onboarding works

1. User installs idemeum mobile application and verifies the same email address as the UPN / email address in Entra ID
2. User navigates to idemeum cloud portal and scans the QR-code
3. Idemeum cloud connects to Entra, validates that the email verified in the mobile exists in Entra directory, and then onboards the user and creates the user record in idemeum

Offboarding

When Entra ID is connected there is no need to manually remove users from idemeum. Once you remove the user in Entra ID, idemeum will detect that and will offboard the user from idemeum, and all access will be revoked.

Connect Entra ID user source

• Access your idemeum MSP tenant admin portal
• Navigate to Users → User source

• Choose azuread from the user source dropdown
• Click Authorize button and allow idemeum to access the Entra ID tenant. Make sure the user has required permissions. We recommend authorizing with global admin account.
• Choose the domain which will be used for user onboarding, i.e domain.com
• Choose the JIT username prefix. This username will be used for all JIT named accounts.
  • For example, if the email is alex@acme.com and the username prefix is msp- then the username that will be used is msp-alex. We use prefix in order to avoid conflict with existing customer accounts.

• Save the configuration

Now the users can install idemeum mobile application, verify Entra ID email address, and onboard into idemeum by scanning a QR-code.