Your Room Booking System uses System for Cross-Domain Identity Management (SCIM) to enable automatic provisioning of users from Azure AD (AAD). When enabled, all user management will be done only in Azure AD and disabled on your Room Booking System's side.
More information on the SCIM integration can be found in a Microsoft guide here.
1. Enable the SCIM integration in the Room Booking System Office portal
Navigate to people management and click on SCIM. When a new window opens, enable the integration and generate a new token. That token will be used to authenticate the connection between Azure AD and your Room Booking System.
2. Create a new enterprise application in Azure AD
Login to your Azure Portal account and navigate to Active Directory section.
Continue to the Enterprise applications section to create a new non-gallery application.
3. Configure your Room Booking System SCIM Azure AD application
Go to the Provisioning section of the newly created application to connect it to your Room Booking System account.
Make sure to set:
- Provisioning Mode to Automatic
- Tenant URL: https://portal.getjoan.com/api/scim/v2/
- Secret Token: Copied from the Room Booking System SCIM configuration page
Click on Test Connection to confirm that the connection between your Azure AD and your Room Booking System is functional. After confirming that the connection works, click Save.
3. Configure Mappings
Your Room Booking System supports the mapping of Users, while Group mapping is currently not available. Click on "Provision Azure Active Directory Groups" and disable it.
The next step is to map Azure user attributes to your Room Booking System ones. Click on "Provision Azure Active Directory Users" and set the attribute mappings. Your Room Booking System supports the following mapping user attributes:
Users (Create,Update,Delete)
Azure attribute |
Joan attribute |
Matching precedence |
Comment |
---|---|---|---|
userPrincipalName |
userName |
1 |
User email used for user matching |
Switch([IsSoftDeleted], , "False", "True", "True", "False") |
active |
|
|
givenName |
name.givenName |
|
|
surname |
name.familyName |
|
|
objectId |
externalId |
|
|
Switch(SingleAppRoleAssignment([appRoleAssignments]), "", "Admin", "Office Manager") |
userType |
|
Used for user groups matching. In this example Admin role will map to Office Manager Joan user group and all others will have User group (empty string) |
That's it. You can now start adding groups or/and users. They will automatically sync with your Room Booking System account.