5. (Optional) Create an Azure AD User Source

Owned by Michael Goss
Apr 07, 2024
1 min read

This step is only necessary if you do not have an existing User Source in Ignition that contains usernames that correspond to attendees listed on an Outlook calendar event. For more information, see 4. Configuring the Module | Option 2 Azure Active Directory User Source.

  1. Open the Ignition Gateway Webpage and log in as an administrator.

  2. In the navigation menu on the left-hand side of the screen, click Config and then Users, Roles.

  3. Click Create new User Source.

  4. Select Azure AD.

  5. Provide a Name and Description, such as “ACME Corp. Azure AD”.

  6. Set the Cache Validation Timeout to the frequency, in milliseconds, that you want both the users and calendars to sync. We recommend no less than 3600000 ms (1 hour) to avoid being throttled by the Microsoft Graph API.

  7. Under Azure AD Parameters, provide the Tenant ID, Client Id, and Client Secret that you obtained after creating the Azure App Registration.

  8. Click Create New User Source, which will trigger the initial synchronization of users identities from Azure to Ignition.

As a reminder, this User Source is strictly for use within the On-Call Rosters and cannot be used for authentication/authorization. For instance, if a user jdoe already exists as a user in Ignition, he will continue to login with his existing credentials as configured in his existing User Source. A jdoe@company.tld user will now also exist in tandem with the newly created Azure AD User Source we just created, but only for the purposes of ensuring that jdoe@company.tld and his associated SMS/Email attributes are added to the On-Call Roster after a calendar synchronization.