Azure Active Directory - Data360_Govern - Preview

Data360 Govern Help

Product type
Software
Portfolio
Verify
Product family
Data360
Product
Data360 Govern
Precisely Data Integrity Suite > Govern
Version
Preview
Language
English
Product name
Data360 Govern
Title
Data360 Govern Help
Copyright
2024
First publish date
2014

For information on configuring single sign-on with Azure Active Directory, see the Microsoft Azure documentation, for example:

https://docs.microsoft.com/en-us/azure/active-directory/active-directory-saas-custom-apps

The field values for Data360 Govern are:

  • Application Name: Data360 Govern
  • Single Sign-on Mode: SAML-based Sign-on
  • Identifier: https://data3sixty.com/ui
  • Reply Url: https://<Client_environment>.data3sixty.com/sso/acs
  • SAML Token Attributes: See Configuring Active Directory.

Synchronizing users

You can synchronize users from Azure Active Directory (AAD), prior to users logging into the system and having an account created upon login (i.e. on-demand provisioning).

  1. Navigate to the Azure portal for your organization and click Azure Active Directory, then select App registrations.
  2. Create a new application registration using your enterprise application name.
  3. From the result grid, click the newly created registration. Make a note of the Application ID, as you will need to provide this to Precisely Support.
  4. Click Settings, then select Keys.
  5. Add a password account. Save the hashed password value as you will need to provide this to Precisely Support.
  6. Select Required permissions, then click Add.
  7. Complete steps 1 and 2 to add API access.

    On step 2 for Windows Azure Active Directory, choose the following permissions:

    • Read directory data

    For Microsoft Graph, choose the following permissions:

    • Read all groups
    • Read directory data
    • Read all users' full profiles
  8. After saving, you will need to grant these permissions as a Global Administrator, from the following link: https://login.microsoftonline.com/common/adminconsent?client_id=6731de76-14a6-49ae-97bc-6eba6914391e&state=12345

    The client_id should be the Application ID noted in step 3. The state field may be any value.

  9. Provide the following information to Infogix Support:
    • Tenant ID
    • Application ID
    • Password hash