Azure AD can help you manage the rights and system logins of all users in your business. To use Azure AD with Visma Addo, it requires that the integration is set up correctly and added as an Enterprise Application in your Azure AD account and that the application gets admin rights.
Create the integration
In order to create the integration between Visma Addo and Azure AD, it is required that the user you use to create the integration is an administrator in Visma Addo and that the user is Global Admin in your Azure AD account. It is only for creating the integration that it is required to be a Global Admin in Azure, to give admin consent. After admin consent has been given, the rights can be downgraded.
When the administrator logs in to Visma Addo, they will be able to see a lot more functions in settings than a standard user. One of the fields that an administrator will be able to see is the "Azure AD configuration", which is the one we need to use to create the integration.
- Press "Settings"
- Select "Azure AD Configuration"
- Press "Integrate"
When you press integrate, a pop-up will appear stating that you will be logged out of your account. Here you just press the "ok" button
After clicking "OK", you will be redirected to a Microsoft login page where you will need to log in with your Microsoft Azure AD user. We recommend that you log in with an integration user who does not have a person attached and who will not be removed. Read more about integration user and synchronization.
Simply select the account you want to create the integration with if you have logged in to it before. If not, tap "Use another account".
Once you have selected the account you want to log in with, or have entered credentials on the account, you will be taken to a page where you need to grant some rights to Visma Addo from your Azure AD account.
In order to create the integration, it is important that you Accept that Visma Addo must:
- Log in to your Azure AD profile to read the user's profile and rights
- See all your security groups in Azure AD.
Once you have clicked "Accept" you have created the integration. However, it is important to check that the Visma Addo Enterprise Application has been granted the correct rights, therefore Admin Consent must be given.
Remember to give Admin Consent
Once the integration is established between Azure AD and Visma Addo, admin consent must also be given.
This is done by logging in to your Azure AD portal and selecting your Active Directory
- Tap the 3 bars at the top or tap "view" under "Manage Azure Active Directory"
- Select "Azure Active Directory"
- If you have clicked on "view" under "Manage Azure Active Directory", you will simply proceed immediately and do not follow step 2.
Since you are now in your Azure Active Directory, you must then find the application for which admin consent must be given.
- Select "Enterprise applications"
Now search for and find Visma Addo under Applications
- Tap on the search field and search for "Visma Addo"
- Select the application when it appears in the list below.
Since you are now inside the Visma Addo Application, we should now have given Admin Consent.
- Select "Permissions" under the Security tab
- Click on "Grant admin consent for Visma Addo"
Subsequently, there will be a pop-up where you have to log in with your integration user. It is important that this user has "Global admin" rights in your Microsoft Azure account.