Azure AD
Azure AD is an identity and access-management service that integrates with a variety of applications and services. It offers multi-factor authentication and conditional access policies, which can be used to secure access to Mindful via SSO.
This section covers the Azure AD SSO integration. Topics covered:
- Adding users
- Setting up Application Roles
- Assigning users to groups
- Assigning users to your application
For instructions on configuring Azure AD, see this getting started guide from Azure.
Add Users
- Navigate to Azure Active Directory > Users, then click New User.
- Fill in the required fields to create a new user. If Groups or Roles are already configured, you can link those here as well.
(Optional) Set up Application Roles
There are two group concepts in Azure AD: Groups and Application Roles. Either one can be sent as a custom claim to Mindful, but each has its own configuration requirements. Regardless of the method you choose, you will still need to assign users to your application.
Note: If you do not plan to use Application Roles, skip this section.
- From your Azure active directory select App registrations.
- Navigate to your application.
- Click App roles, then click Create app role. Make sure Allowed member types is set to Users/Groups or Both.
Assign Users to Groups
- Navigate to Users.
- Click the user you wish to update.
- Click the Groups side navigation link.
- Click add memberships.
- Select the user(s) you wish to add to the group.
Assign Users to Your Application
- Navigate to Enterprise Applications > Your application.
- Click Assign users and groups, then click Add user/group.
- Select the user(s) you wish to assign the role.
- Select the application role you wish to assign to the user(s). This can be the default user role if you're not using groups.
- Click Assign.
- This will add another row to the Users and groups list. You should see the new row with your assigned role.
