Open-AudIT can use Azure Active Directory (Azure AD) as an authentication method. This means your user in Open-AudIT can click the Logon using Azure button on the logon page and use their Azure AD credentials to logon. That user will need to already exist within Open-AudIT (and be assigned Roles and Orgs), but will not need to remember a separate set of logon credentials.
To use this Enterprise feature, you first need to create your user in Open-AudIT as per usual. Assigning a password is not necessary. You do have to assign Roles and Orgs. The username in Open-AudIT should match the Azure AD \'preferred username\' attribute. There is no need for a Full Name or Email - these will be populated from Azure. If you don\'t know your users \'preferred username\', fear not. You can create the new Auth Menthod in Open-AudIT and the Enterprise Application in Azure and when a user attempts to sign-on to Open-AudIT without a pre-existing user, check the logs and you\'ll see their \'preferred username\' logged for your convienence.
Then create a new Auth method in Open-AudIT by going to menu -> Admin -> Auth Methods -> Create Auth. Provide a name and set the \'type\' to Azure.
+$body = 'To use this Enterprise feature, you first need to create your user in Open-AudIT as per usual. Assigning a password is not necessary. You do have to assign Roles and Orgs. The username in Open-AudIT should match the Azure AD \'preferred username\' attribute. There is no need for a Full Name or Email - these will be populated from Azure. If you don\'t know your users \'preferred username\', fear not. You can create the new Auth Method in Open-AudIT and the Enterprise Application in Azure and when a user attempts to sign-on to Open-AudIT without a pre-existing user, check the logs and you\'ll see their \'preferred username\' logged for your convienence.
Then create a new Auth method in Open-AudIT by going to menu -> Admin -> Auth Methods -> Create Auth. Provide a name and set the \'type\' to Azure.
 . 'images/auth_az_14.png)
In a second tab or window sign-on to your Azure Active Directory console and go to Enterprise Applications, then click \'New application\'.