Azure Active Directory Synchronization

The Azure Active Directory (AD) synchronization allows you to store passwords and push password changes to Azure AD synced accounts.

After the client is authenticated and their Microsoft credentials sync is set to enabled, password changes in Passportal will sync to Azure.

Azure AD synchronization is a one-way process from Passportal to Azure and unlike Active Directory, auto-rotate is not an option for Azure passwords.

Blink will work as usual for Azure passwords.

How to setup Azure AD sync

  1. Navigate to the Clients section from the left pane

  2. Search for the client and choose the Edit Client option in the Actions column's 3 dots menu

  3. This opens the Edit Client tile including a Microsoft Sync drop-down

  4. Select Connect to Azure

  5. Once selected, the "Edit Client" section displays an "Authenticate button and "One-way Sync" toggle (on by default)

  6. To begin the synchronization process click the Authenticate button and enter the Microsoft details when prompted

After authenticating, the "Edit Client" section displays a green tick and "Authentication successful" message. Azure clients are indicated in the Clients view by a cloud. Blue clouds for successful authentications and gray clouds for those that have yet to authenticate.

To synchronize Passportal password changes with Azure AD, the client will need to add the Azure users in Passportal either manual or import as passwords. Once the users are in Passportal, set Microsoft sync to "Enabled" to active the one-way sync.

Azure clients in Passportal that have been inactive for 30-days will require re-authentication.