Azure AD is an identity and access management service from Microsoft. As part of the Blue10 – Enterprise subscription, the integration between Blue10 and Azure AD can be set up. In this blog you can read more about the integration with Azure AD.
What are the benefits of the integration with Azure AD?
The following functionalities are available:
- Centralized access management to Blue10
Manage users in one central place. A change in authentication of user settings in one portal directly apply to all the systems that are linked to Azure AD.
- Authentication Blue10 via Single Sign-On (SSO)
Allow users to perform a single log-in with their company account by using SSO. After logging in, the user automatically has access to multiple business applications.
- Multi-factor Authentication (MFA)
Log-in to your user account with the use of a second factor, for example by generating a code on your mobile device by the Microsoft Authenticator App.
- Conditional access from trusted IP address
Only allow to log-in to a user account from a pre-specified IP address or IP location.
How does it work?
To integrate Blue10 with Azure AD, a link is created between the Blue10 environment and the customer’s Azure AD tenant. After, it is verified whether all users in Blue10 are known in the Azure AD tenant. Logging in to Blue10 is performed via the linked Azure AD tenant where the actual authentication takes place.
It is also possible to connect more than one Azure AD tenant with one Blue10 environment. A user in Blue10 must be known in one of the associated Azure AD tenants to successfully log in to Blue10. Please note that setting up the connection of the Azure AD tenant must always be performed by a user with administrative rights in the Azure AD tenant.
After the transition to logging in via Azure AD, it is no longer possible for users to log in with the regular Blue10 login details. In addition, other login methods, such as Exact Online, Google and Microsoft, are no longer valid.
On the login page of Blue10 you choose the option Or login via > Microsoft v2. Log in with the Microsoft account that is known in (one of) the Azure AD tenant(s) associated with Blue10.
Are you curious whether logging in via Azure AD has consequences for the users in Blue10? Read more in this blog.
What is currently (not) being supported?
What is currently not being supported in the integration with Azure AD?
- Use of the Blue10 App
For the time being, it is not possible to log in to the Blue10 App for iOS and Android with an Azure AD account. You can therefore not use the app to upload documents. You can add documents in Blue10 by manually importing them into Blue10 or emailing them to the email address set in Blue10.
Read more in this blog how to activate the integration with Azure AD.