Skip to content

Commit 15557f8

Browse files
megvanhuygenmegvanhuygen
authored
Merge pull request #97512 from martincoetzer/master
Update doc to include Successfactors
2 parents a29ee57 + 6e3b413 commit 15557f8

File tree

2 files changed

+9
-8
lines changed

2 files changed

+9
-8
lines changed

articles/active-directory/manage-apps/media/auto-user-provision-dp/workdayprovisioning.png

2.58 KB
Loading

articles/active-directory/manage-apps/plan-auto-user-provisioning.md

Lines changed: 9 additions & 8 deletions
Original file line numberDiff line numberDiff line change
@@ -94,7 +94,7 @@ In this example, users and or groups are created in an HR database connected to
9494

9595
#### Automatic user provisioning for cloud-only enterprises
9696

97-
In this example, user creation occurs in Azure AD and the Azure AD provisioning service manages automatic user provisioning to the target (SaaS) applications:
97+
In this example, user creation occurs in Azure AD and the Azure AD provisioning service manages automatic user provisioning to the target (SaaS) applications.
9898

9999
![Picture 2](media/auto-user-provision-dp/cloudprovisioning.png)
100100

@@ -108,16 +108,17 @@ In this example, user creation occurs in Azure AD and the Azure AD provisioning
108108

109109
#### Automatic user provisioning for cloud HR applications
110110

111-
In this example, the users and or groups are created in a cloud HR application like Workday.
111+
In this example, the users and or groups are created in a cloud HR application like such as Workday and SuccessFactors. The Azure AD provisioning service and Azure AD Connect provisioning agent provisions the user data from the cloud HR app tenant into AD. Once the accounts are updated in AD, it is synced with Azure AD through Azure AD Connect, and the email addresses and username attributes can be written back to the cloud HR app tenant.
112112

113113
![Picture 2](media/auto-user-provision-dp/workdayprovisioning.png)
114114

115-
1. Accounts created in cloud HR system
116-
1. Data flows into on-premises AD through Azure AD provisioning service and the provisioning agent.
117-
1. Azure AD Connect syncs data to Azure AD
118-
1. Email and username attribute can be written back to the cloud HR application.
119-
120-
For more information on solution architecture and deployment, see [Tutorial: Configure Workday for automatic user provisioning](https://docs.microsoft.com/azure/active-directory/saas-apps/workday-inbound-tutorial).
115+
1. **HR team** performs the transactions in the cloud HR app tenant.
116+
2. **Azure AD provisioning service** runs the scheduled cycles from the cloud HR app tenant and identifies changes that need to be processed for sync with AD.
117+
3. **Azure AD provisioning service** invokes the Azure AD Connect provisioning agent with a request payload containing AD account create/update/enable/disable operations.
118+
4. **Azure AD Connect provisioning agent** uses a service account to manage AD account data.
119+
5. **Azure AD Connect** runs delta sync to pull updates in AD.
120+
6. **AD** updates are synced with Azure AD.
121+
7. **Azure AD provisioning service** writebacks email attribute and username from Azure AD to the cloud HR app tenant.
121122

122123
## Plan the deployment project
123124

0 commit comments

Comments
 (0)