IT documentation
      Back to home
      1. IRIS Clarity Help Centre
      2. Getting started
      3. IT documentation

      Entra sync (Automatic user provisioning)

      Entra sync

      Entra sync links your IRIS Clarity Enterprise Application (set up in Microsoft Azure) directly to the IRIS account dashboard, allowing you to manage your IRIS users from Microsoft Azure.

       

      Overview

      If you have set up SSO with Microsoft Azure, you will need to add users to both the Enterprise Application in Azure and the IRIS Clarity dashboard. With Entra Sync activated, the adding and removing of users to the IRIS Clarity dashboard is fully automated so you only need to manage them in Azure.

      Setup

      To enable Entra sync, you must have set up SSO with Microsoft Azure. Entra sync then uses the Azure provisioning feature of Microsoft Entra ID to add and remove users.

      You will need to have the following permissions,

      • IRIS Clarity: Admin

      • Microsoft Azure: Application Administrator, Cloud Application Administrator or Global Administrator role.

      Steps

      Full instructions to set up SSO can also be found in the SSO section of the settings area in the dashboard.

      1. Go to the Entra (Azure AD) homepage
      2. Select IRIS Clarity Enterprise Application
      3. Go to provisioning
      4. Set the Provisioning Mode to Automatic.
      5. Enter details shown in the dashboard into the Admin Credentials section
        1. Enter the URL in the Tenant URL field
        2. Enter the API Token in the Secret Token field
      6. Click Test Connection to make sure that Entra (Azure AD) can connect to IRIS

      Mapping

      1. “Provision Azure Active Directory Groups” set to No
      2. “Provision Azure Active Directory Users” set to Yes
        1. Click into “Provision Azure Active Directory Users”
        2. Set “Enabled” to Yes
        3. Set “Source Object” to User
        4. Set “Target Object Actions” to “Create”, “Update” and “Delete”
        5. Align “Attribute Mappings” to the example

      3. Press “Save” at the top of the screen
      4. Return to Provisioning screen and click “Start cycle”

      After it is setup, the sync icon will be added to the team section of the account dashboard.

      Support

      If you have any issues setting up Entra Sync, please get in contact with your sales representative or email support@shapedbyiris.com

       

      Next step: Application configuration