We are excited to announce that PeopleGoal integrates with Microsoft Active Directory. Employee data stored in Microsoft Active Directory will act as the primary source of users and profile data for PeopleGoal.
Configuring your integration is a simple, step-by-step process we've outlined below.
The Azure Active Directory part
Step 1: Navigate to Azure Active Directory and create a new application.
Azure Active Directory >> App Registration and select New application registration.
Then click on the + ADD button to add a new application.
Enter a name for the application, select Web app/API as the Application Type, and for Sign-on URL enter your application URL.
Step 2: Configure the right permissions
Select Settings and API Access >> Required Permissions and select Grant permissions.
Then click on Windows Azure Active Directory on the Required Permissions table and update the permissions as per below and click save:
Step 3: Allowing access from external organizations
The final step is to enable the Multi-Tenant flag for this application. In the Settings section, click Properties. Locate the Multi-tenanted toggle at the bottom and select Yes and click the SAVE button.
Now you're all set on the Azure Active Directory side.
Step 4: Create the key
Create a key which will be used as the Client Secret in the PeopleGoal connection. Click on Keys from the Settings menu.
Enter a name for the key and choose the desired duration.
Click on Save and the key will be displayed.
Make sure to copy the value of this key before leaving this screen, otherwise you may need to create a new key.
This value is used as the Client Secret in the next step.
Step 5: Configure the reply URLs
Next you need to ensure that your PeopleGoal callback URL is listed in the allowed reply URLs for the created application. Navigate to Azure Active Directory -> Apps registrations and select your app. Then click Settings -> Reply URLs and add:
The PeopleGoal part
Step 1: Create the AD integration in PeopleGoal
Log in in your account and navigate to integrations from:
Configure >> Account settings >> Integration settings and select Configure Microsoft Azure Active Directory Integration.
Step 2: Adding client credentials
To add the client credentials you will need:
- Your Tenant domain. Typically youraccount.onmicrosoft.com
- Your Client ID which can be found in register app details
- Your secret key which you saved earlier
- You Client App URI (Called App ID URI in Azure) which can be found in Settings >> Properties >> copy App ID URI
Next click to add the API credentials.
Congratulations! You are now ready to import your Microsoft Azure AD users.
Step 3: Sync your account to import your users
Import your users from your Active Directory account by clicking on Sync Account.
Once the sync process is completed you will be able to see the number of users added and marked as deleted.
Microsoft Azure Active Directory (AD) will be the primary source of users. Every night at midnight PeopleGoal will pull your active directory users and sync profiles on PeopleGoal. New users will be ready to invite to PeopleGoal.
If you run in to any errors our Customer Support team can run troubleshooting with you. Reach out to us on [email protected] and we'll get you on the right track.