Versions Compared

Old Version 1

changes.mady.by.user Mollie Aspley

Saved on

compared with

New Version 2

changes.mady.by.user Mollie Aspley

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Set up Instructions

Full instructions on how to set up the Azure AD integration can be found within your Learn Amp account. Please go to yourdomain.learnamp.com/en/integrations/azure_ad

...

Other Frequently Asked Questions

Expand
titleCan I choose which group of users in Azure AD are synced with Learn Amp

Yes. We recommend creating a Learn Amp group in Azure AD. This should be a group that contains the users they’d like to have access to the Learn amp platform, whoever is in this group will by synced over to the Learn amp platform and users who aren’t wont. Anyone who is removed from this group at any point will be deactivated.

Expand
titleCan I create user accounts in Learn Amp without sending invitation emails?

Yes. When setting up the Azure AD integration you will have the option to either send invitation emails or don’t invite automatically. Invitation emails can be issued at any time from the Individuals page in Learn Amp.

Expand
titleI have updated a user's information in Azure AD but the changes have not been reflected in Learn Amp?

Azure AD syncs with Learn amp every 24hrs automatically, however, if someone is removed from the Active Directory group, or their details change etc., then Learn Amp will be notified, and re-fetch details for that user - these notifications can take 30 minutes to propagate to Learn Amp. Should the updated information still not appear in Learn Amp, press the ‘Import all from Azure Active Directory’ ‘Sync users’ button on the Azure Active Directory integration page within your Learn Amp account.

...

Expand
titleDoes the Azure AD Integration integration sync team managers

Azure AD won’t sync team managers but can translate line management relationships using override managers in Learn Amp. When setting up the Azure AD integration, tick the box. ‘Assign override managers/Direct reports in Azure AD’.

...

Expand
titleWhat information from Azure AD is stored within Learn Amp to setup the integration?

Tenant ID

We store the tenant ID of your AzureAD.
This is stored in an encrypted field (not in plain text) within our production database.
The tenant ID is not kept in any file or other shareable/downloadable format.

Security Group Object ID

We must store the Object ID of the Security Group within AzureAD, which defines which users should be created/updated/deactivated automatically by the integration.

This object ID is stored in plain text within the primary database.

Expand
titleCan we use Azure AD for single sign on (SSO)?

Yes. Learn Amp can also integrate with Azure AD to permit Single Sign On. This uses the OAuth2 protocol against your Azure AD tenant. Users are authenticated by the UserPrincipalName field in Azure AD. For full information, please see our integration page on Azure Active Directory Integration for Single Sign On.