Home/News, Product/Sign in using Azure AD SSO
PRODUCT UPDATE

Sign in to vScope with Microsoft using Azure AD SSO

Make vScope accessible to more people in your organization by adding Azure as an identity provider. Using Azure as your identity provider empowers collaboration across teams and using vScope as your organization’s shared tool for documentation and IT reporting.

Introducing Azure AD Single Sign-On (SSO)

vScope includes built-in user management, allowing you to manually add and manage users, groups, and permissions. To reuse existing users and groups, vScope has until this date only supported on-prem Active Directory integration. With more companies migrating their directory services to Azure, we have added yet another directory integration to vScope. Azure AD Single Sign-On allows you an additional identity provider (Azure) to your user management.

Sign in with Azure AD

Supporting multiple identity providers

Adding Azure AD as an identity provider allows users to sign in with Microsoft. However, you can still use vScope and Active Directory as identity providers meaning that one size does not have to fit all. In other words, different users may use different sign-in methods. This is good news if you for instance do not have the same users in your Active Directory as in Azure AD.

Notice Remember to always have at least one admin user account that is configured to use vScope as its identity provider. If the integration to Azure and/or Active Directory should fail you are not locked out forever.

Group mappings to reuse permissions

With Azure AD SSO you can choose to either manage permission directly in vScope, eg. you don’t want changes to user accounts in Azure AD to apply in vScope automatically, or map permissions from Azure AD to vScope.

User permissions in vScope can be configured so that it reuses group memberships in Azure. This makes it easier if you want to control permissions directly in Azure, eg. if a user becomes a member of the administrator group in Azure, the user should also be an admin in vScope.

Get started

If Azure AD SSO is not configured, the “Sign in with Microsoft” button will be disabled. To enable it, you need to sign in and go to Settings > User & Access > Single Sign-On (admin permissions are required). Fill in the necessary information (following our guide if you don’t know how), and hit save.

How to enable Azure SSO

Finally, if you want to change what identity provider to use for each user, go to Settings > Users & Access > Users & Groups. To change for one user, just select the user in the list and pick preferred Authentication.

Selecting authentication method for the user

If you want to change in bulk, you can Push authentication method to every user by clicking , select Push Authentication, pick authentication, and hit Push.

Careful, remember to change so that at least one admin user is using vScope as identity provider to avoid being locked out.

Final notes

Each identity provider requires different properties to be set. Using Azure AD requires the user account to have an email set. This differs from Active Directory, which only requires a username. We strongly recommend you to always have an email set. This way you will not miss out if a user want to collaborate with you or if you need to reset password (only applicable when using vScope as identity provider.

What we’ve learned

  • vScope now supports three identity providers vScope, Active Directory, and Azure
  • Setting up Azure AD SSO allows users to sign in with Microsoft with just one click
  • You can configure default permission settings for new users
  • …or map permissions based on group membership in Azure
  • Curiosa: vScope uses OpenID to connect to Azure. This allows us to extend with many more identity providers in the future (eg. Google or Apple). Are you missing your identity provider in vScope? Let us know! Contact customersuccess@infrasightlabs.com.

Learn more

PUBLISHED
FEBRUARY 9 2022
Author Soroush Pourhadi
ANTON BERGHULT

Product Marketing

vScope is a Great Place to Work

About vScope

vScope is fast and easy IT reporting, helping companies improve collaborations, innovation, and operational efficiency. Based on industry-leading IT inventory, vScope keeps your reports and documentation updated, so that people in your organization always can access relevant insights about IT.

Get started

Read More…

  • vScope – Effortless IT Reporting

vScope 3.24.0

June 27th, 2022|0 Comments

vScope 3.24 3.24.1June 30, 2022 Directory Machines have been disabled. Computers in Active Directory are found under 'All Machines' 3.24.0 June 27, 2022 Features 🎉 Invite users via

New Integration: Microsoft 365 Defender

June 15th, 2022|0 Comments

PRODUCT UPDATE New Integration: Microsoft 365 Defender Microsoft Defender for Office 365 is a cloud-based email filtering service that helps protect your organization against advanced threats like phishing and malware

Invite people to vScope via email

June 15th, 2022|0 Comments

PRODUCT UPDATE Invite people to vScope via email Now you can invite any user to vScope by adding its email as collaborator. This means that collaborators don't have to be

  • vScope – Effortless IT Reporting

vScope 3.23.0

May 23rd, 2022|0 Comments

vScope 3.23 3.23.1 May 30, 2022 Improvements Fixed styling in Tracker Updated Save button behavior in Table Explorer 3.23.0 May 23, 2022 Features 🎉 New integration: Microsoft 365 Defender 🎉 Tag Manager: Improved with

  • vScope – Effortless IT Reporting

vScope 3.22.0

May 5th, 2022|0 Comments

vScope 3.22.0 May 5, 2022 Features 🎉 Nutanix Integration: Fetch more assets by connecting vScope to Nutanix Improvements Filter Service Cards based on layout in vScope Service Mapping Pagination of Service Cards to enhance