Briefly explained and how we implement it in seventhings.
A directory is a hierarchical structure that stores information about objects on the network. A directory service, such as Active Directory Domain Services (AD DS), provides the methods for storing directory data and making this data available to network users and administrators.
Setting up Azure with seventhings
First, Azure must be configured in seventhings. This is only possible for the admin of seventhings and cannot be set up by simple users:
- Navigate to "Settings", "System settings".
- Before you can activate Azure via the button you have to configure it
- Click on "configure" below
- Now fill in the blanks Client ID, Secret ID and Tenant ID, these are company specific information of your Azure AD.
(The first two boxes should already be pre-filled). - Click on Save
- Now fill in the blanks Client ID, Secret ID and Tenant ID, these are company specific information of your Azure AD.
- Now activate Azure by clicking the button for it
Now Azure AD is enabled for all company accounts.
Login with Azure
- The user now sees a new button in his login window with "Log in with Microsoft".
- He is guided through the Microsoft single sign-on and logs in to seventhings with his company email address and respective password.
Important:
If a user is already a seventhings user, the login information is updated to Azure AD.
If a user is not yet in seventhings, it will be newly created.
General rule:
If a user logs in via Azure, his seventhings login information expire.
They can no longer log in to the system as a normal user with a freely selected mail and password. If a password is forgotten, it must be reassigned via the Microsoft account, not via seventhings.