Versions Compared

Version Old Version 21 New Version 22
Changes made by

Rinkesh Goyal

Christine Gross

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Include Page
API Header
API Header
Info

Note: To do this operation configure sync with AAD you need to be an admin or application owner within Zilla and AND have admin access with your organization's Azure Active Directory -(AAD) application, specifically Global administrator role.

  1. Login to Azure Active Directory with your admin credentials.

  2. Click Azure Active Directory, and from there you will to be redirected to your tenant’s overview page.

  3. Save Copy and save the Primary domain for the tenant you want to sync for use in a future later step.

  4. Login to Zilla with your admin credentials.

  5. You will see your Zilla Applications tab, click Add Application button at the top right.

  6. You will see Add Application screen with Search Library tab. Type AAD aad as search text, and click Add to Applications button on the right side of the Azure Active Directory entry.

  7. Fill in the form with appropriate details and click Add to Applications button.

  8. The AAD instance will be added to your Applications, click the Azure Active Directory application name.

  9. You will see a detailed application instance page. Click Sync now in the top right corner.

  10. A dialogue appears, enable API Integration.

  11. Upon enabling the API Integration more customization options appear.

  12. AAD tenant's domain name - Fill in the domain name saved from in Step 3.

  13. Sync All Accounts? ( Yes/No ) - Yes will sync all of your organization’s users, No will sync only users who have any roles assigned to them . Users and users without any roles will not be synced. By default, the value is Default value: Yes.

  14. Sync All Groups? ( Yes/No ) - Yes will sync all groups from Azure Active Directory if provided, otherwise, No will only sync security-enabled groups are synced. By default, the value is . Default value: No.

  15. Comma-separated attributes that identify a user - Provide an AAD-specific attribute (e.g., job title, department, etc) for which you want to sync AAD users. For example, if you specify a department, only accounts that have a defined department will be imported.

  16. Auto Discover Azure Cloud subscriptions? (Yes/No) - Yes allows you to will auto-discover all the Azure Cloud subscriptions , by default the value is and create application instances for them in Zilla. Default value: No.

  17. Auto Sync discovered subscriptions? (Yes/No ) - Yes allows will automatically sync the auto-discovered subscriptions to be automatically synced when the parent is synced, by default the value is No. This value should be set to No if Auto Discover Azure Cloud subscriptions? (Yes/No) is set to No. Default value: No.

  18. Click Sync Now.

  19. Click Next.

  20. You will be taken to the Microsoft site where you need to log in with the a user with the Admin (Global administrator) role for AAD and grant consent on behalf of the organization.

  21. The consent screen will look like the image below when Auto Discover Azure Cloud subscriptions? (Yes/No) is set to Yes.

  22. The consent screen will look like the image below when Auto Discover Azure Cloud subscriptions? (Yes/No) is set to No.

  23. Click Accept. On successful OAuth, you will be redirected to Zilla with Sync in progress... message for newly added AAD application instance.

  24. On successful sync, you will see the following notification:

...