1. Articles
  2. Azure
Azure
by Andrew Stevens
Top Right Image

Azure Tenant

You can configure as many Azure Tenants as you need for Single Sign On. The set up of Azure can be found in the

Admin area > Integration & API > Windows Azure > Tenants tab 

The purpose of this feature is: -

  • To allow your Technicians to use Single Sign On to log in to Vivantio from Azure Active Directory
  • To populate the Callers from the Azure Active Directory

The fields pulled through from Azure AD are: Name, Email address, Phone number, Location


Please note: If you have an existing synch with an Active Directory for the purpose of populating Callers, then enabling an Azure synch to populate Callers may create duplicate Callers.

 

The Tenants tab allows you to configure the Tenants, tick the Tenant box and select Directory Sync to enter the credentials for pulling in the end users:

Azure


The information you require for this screen is: -

  • Sync Frequency - The options are 4 hours, 12 hours or 24 hours
  • Filter Expression - The filter expression to use when retrieving users from Azure (for more information, see MSDN). For testing/previewing filters there is a Microsoft Website that can be used: https://developer.microsoft.com/en-us/graph/graph-explorer.(Please note this is a site external to Vivantio and Vivantio takes no responsibility for the content of the external site. Users use this site at their own risk).

  • You don't need to sign into the Microsoft site but if you don't you will be working on dummy data.

  • Once you’ve decided whether to sign in or not, click the ‘show more samples’ button in the bottom left: 



  • Ensure Users is the only option selected.

  • Then on the left click "all users in the organization"




  • Then in the center/top of the screen, you can start adding in your filter expressions and pressing "Run Query" will display the results. To filter on the results you can add in ?$filter= as below and use https://msdn.microsoft.com/en-us/library/azure/ad/graph/howto/azure-ad-graph-api-supported-queries-filters-and-paging-options#filter as a reference. (Please note this is a site external to Vivantio and Vivantio takes no responsibility for the content of the external site.  Users use this site at their own risk)

Please Note: When writing an Azure Directory Sync Query the fields that can be used for filtering are the following:

 

  • Department
  • State
  • City
  • Country
  • DisplayName
  • EmployeeId
  • GivenName
  • Surname
  • UsageLocation - (only 2 characters)
  • JobTitle

 

  • Once you are happy with the filter anything after the "$filter=" can be copied and pasted into the Filter Expression Box as below. The below filters only enabled accounts

 



  • Customer - Your Customer name can be selected from the drop down menu
  • Match Location based on - The options here are 'Do not Match' 'Physical Delivery Office Name' and 'Department'
  • Click Save


Please note that the Callers will join the Client specified and be linked to a Location that matches the Azure fields of Physical Delivery Office Address or Department on the Vivantio Location Name.

Azure


The Filter Expression logic allows you to exclude users you do not want to pull into Vivantio, an example of the expression format can be seen below:

Azure


For testing/previewing filters there is a Microsoft Website that can be used:

https://developer.microsoft.com/en-us/graph/graph-explorer

 

The Post Filter Expression is a more advanced filtering option when synching callers with the Azure AD integration. 

For example, to exclude certain contacts from being imported.

The Directory Sync options have been enhanced to include a 'Post Filter Expression' field where you can construct advanced filters using C# predicate expression (i.e. the expression returns a True/False value) which operates on an instance of an Azure User called 'user'.

 

Examples of expressions you can use include:

user.JobTitle != null
user.JobTitle != null && user.JobTitle.ToLower () == “Support Analyst”
user.JobTitle != null && user.JobTitle.ToUpper() == “SUPPORT ANALYST”
user.JobTitle != null && user.JobTitle.EndsWith(“Analyst”)
user.Mail != null && user.Mail.Contains(“onmicrosoft.com”)
user.JobTitle != null && user.JobTitle.Trim().EndsWith(“janitor”) && user.Mail != null && user.Mail.Trim().EndsWith(“Analyst”)
user.AccountEnabled
user.AccountEnabled == true
string.IsNullOrEmpty(user.JobTitle)
string.IsNullOrWhiteSpace(user.JobTitle)

 

 

On the Vivantio login page, you'll see the option to login via Windows Azure

Azure


You can also enable SSO for your End Users, under

Admin > Self Service > Features

Azure


The end user can select the option below the Login Credentials to login with Azure:

Azure

Reviewed: 23 August 2023

Updated on Tuesday, April 2, 2024