Merge pull request #88521 from itechedit/foodee-provisioning-tutorial

ShawnJackson · web-flow · commit 5cdbd0ea6b8a · 2019-10-02T11:55:57.000-05:00
edit pass: foodee-provisioning-tutorial
diff --git a/articles/active-directory/saas-apps/foodee-provisioning-tutorial.md b/articles/active-directory/saas-apps/foodee-provisioning-tutorial.md
@@ -1,6 +1,6 @@
 ---
-title: 'Tutorial: Configure Foodee  for automatic user provisioning with Azure Active Directory | Microsoft Docs'
-description: Learn how to configure Azure Active Directory to automatically provision and de-provision user accounts to Foodee.
+title: 'Tutorial: Configure Foodee for automatic user provisioning by using Azure Active Directory | Microsoft Docs'
+description: Learn how to configure Azure Active Directory to automatically provision and deprovision user accounts to Foodee.
 services: active-directory
 documentationcenter: ''
 author: zchia
@@ -20,147 +20,153 @@ ms.author: Zhchia
 
 # Tutorial: Configure Foodee for automatic user provisioning
 
-The objective of this tutorial is to demonstrate the steps to be performed in Foodee  and Azure Active Directory (Azure AD) to configure Azure AD to automatically provision and de-provision users and/or groups to Foodee.
+This article shows you how to configure Azure Active Directory (Azure AD) in Foodee and Azure AD to automatically provision or deprovision users or groups to Foodee.
 
 > [!NOTE]
-> This tutorial describes a connector built on top of the Azure AD User Provisioning Service. For important details on what this service does, how it works, and frequently asked questions, see [Automate user provisioning and deprovisioning to SaaS applications with Azure Active Directory](../manage-apps/user-provisioning.md).
+> The article describes a connector that's built on top of the Azure AD User Provisioning service. To learn what this service does and how it works, and to get answers to frequently asked questions, see [Automate user provisioning and deprovisioning to SaaS applications with Azure Active Directory](../manage-apps/user-provisioning.md).
 >
-> This connector is currently in Public Preview. For more information on the general Microsoft Azure terms of use for Preview features, see [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).
+> This connector is currently in preview. For more information about the Azure terms-of-use feature for preview features, go to [Supplemental Terms of Use for Microsoft Azure Previews](https://azure.microsoft.com/support/legal/preview-supplemental-terms/).
 
 ## Prerequisites
 
-The scenario outlined in this tutorial assumes that you already have the following prerequisites:
+This tutorial assumes that you've met the following prerequisites:
 
-* An Azure AD tenant.
+* An Azure AD tenant
 * [A Foodee tenant](https://www.food.ee/about/)
-* A user account in Foodee  with Admin permissions.
+* A user account in Foodee with Admin permissions
 
-## Assigning users to Foodee 
+## Assign users to Foodee 
 
-Azure Active Directory uses a concept called *assignments* to determine which users should receive access to selected apps. In the context of automatic user provisioning, only the users and/or groups that have been assigned to an application in Azure AD are synchronized.
+Azure AD uses a concept called *assignments* to determine which users should receive access to selected apps. In the context of automatic user provisioning, only the users or groups that have been assigned to an application in Azure AD are synchronized.
 
-Before configuring and enabling automatic user provisioning, you should decide which users and/or groups in Azure AD need access to Foodee. Once decided, you can assign these users and/or groups to Foodee  by following the instructions here:
-* [Assign a user or group to an enterprise app](../manage-apps/assign-user-or-group-access-portal.md)
+Before you configure and enable automatic user provisioning, you should decide which users or groups in Azure AD need access to Foodee. After you've made this determination, you can assign these users or groups to Foodee by following the instructions in [Assign a user or group to an enterprise app](../manage-apps/assign-user-or-group-access-portal.md).
 
 ## Important tips for assigning users to Foodee 
 
-* It is recommended that a single Azure AD user is assigned to Foodee  to test the automatic user provisioning configuration. Additional users and/or groups may be assigned later.
+When you're assigning users, keep the following tips in mind:
 
-* When assigning a user to Foodee, you must select any valid application-specific role (if available) in the assignment dialog. Users with the **Default Access** role are excluded from provisioning.
+* We recommend that you assign only a single Azure AD user to Foodee to test the configuration of automatic user provisioning. You can assign additional users or groups later.
 
-## Setup Foodee for provisioning
+* When you're assigning a user to Foodee, select any valid application-specific role, if it's available, in the **Assignment** pane. Users who have the *Default Access* role are excluded from provisioning.
 
-Before configuring Foodee for automatic user provisioning with Azure AD, you will need to enable SCIM provisioning on Foodee.
+## Set up Foodee for provisioning
 
-1. Log in into [Foodee](https://www.food.ee/login/). Click on your **Tenant ID**
+Before you configure Foodee for automatic user provisioning by using Azure AD, you need to enable System for Cross-domain Identity Management (SCIM) provisioning in Foodee.
+
+1. Sign in to [Foodee](https://www.food.ee/login/), and then select your tenant ID.
 
 	![Foodee](media/Foodee-provisioning-tutorial/tenant.png)
 
-2. Under Enterprise portal > Select **Single Sign On**.
+1. Under **Enterprise portal**, select **Single Sign On**.
 
-	![Foodee](media/Foodee-provisioning-tutorial/scim.png)
+	![The Foodee Enterprise Portal left-pane menu](media/Foodee-provisioning-tutorial/scim.png)
 
-3. Copy the **API Token**. These values will be entered in the **Secret Token** field in the Provisioning tab of your Foodee application in the Azure portal.
+1. Copy the value in the **API Token** box for later use. You'll enter it in the **Secret Token** box in the **Provisioning** tab of your Foodee application in the Azure portal.
 
 	![Foodee](media/Foodee-provisioning-tutorial/token.png)
 
-
 ## Add Foodee from the gallery
 
-To configure Foodee  for automatic user provisioning with Azure AD, you need to add Foodee  from the Azure AD application gallery to your list of managed SaaS applications.
+To configure Foodee for automatic user provisioning by using Azure AD, you need to add Foodee from the Azure AD application gallery to your list of managed SaaS applications.
 
-**To add Foodee  from the Azure AD application gallery, perform the following steps:**
+To add Foodee from the Azure AD application gallery, do the following:
 
-1. In the **[Azure portal](https://portal.azure.com)**, in the left navigation panel, select **Azure Active Directory**.
+1. In the [Azure portal](https://portal.azure.com), in the left pane, select **Azure Active Directory**.
 
-	![The Azure Active Directory button](common/select-azuread.png)
+	![The Azure Active Directory command](common/select-azuread.png)
 
-2. Go to **Enterprise applications**, and then select **All applications**.
+1. Select **Enterprise applications** > **All applications**.
 
-	![The Enterprise applications blade](common/enterprise-applications.png)
+	![The Enterprise applications pane](common/enterprise-applications.png)
 
-3. To add a new application, select the **New application** button at the top of the pane.
+1. To add a new application, select **New application** at the top of the pane.
 
 	![The New application button](common/add-new-app.png)
 
-4. In the search box, enter **Foodee**, select **Foodee** in the results panel, and then click the **Add** button to add the application.
+1. In the search box, enter **Foodee**, select **Foodee** in the results pane, and then select **Add** to add the application.
 
-	![Foodee  in the results list](common/search-new-app.png)
+	![Foodee in the results list](common/search-new-app.png)
 
-## Configuring automatic user provisioning to Foodee  
+## Configure automatic user provisioning to Foodee 
 
-This section guides you through the steps to configure the Azure AD provisioning service to create, update, and disable users and/or groups in Foodee  based on user and/or group assignments in Azure AD.
+In this section, you configure the Azure AD provisioning service to create, update, and disable users or groups in Foodee based on user or group assignments in Azure AD.
 
 > [!TIP]
-> You may also choose to enable SAML-based single sign-on for Foodee, following the instructions provided in the [Foodee Single sign-on tutorial](Foodee-tutorial.md). Single sign-on can be configured independently of automatic user provisioning, though these two features complement each other.
+> You can also enable SAML-based single sign-on for Foodee by following the instructions in the [Foodee single sign-on tutorial](Foodee-tutorial.md). You can configure single sign-on independent of automatic user provisioning, though these two features complement each other.
 
-### To configure automatic user provisioning for Foodee in Azure AD:
+Configure automatic user provisioning for Foodee in Azure AD by doing the following:
 
-1. Sign in to the [Azure portal](https://portal.azure.com). Select **Enterprise Applications**, then select **All applications**.
+1. In the [Azure portal](https://portal.azure.com), select **Enterprise Applications** > **All applications**.
 
-	![Enterprise applications blade](common/enterprise-applications.png)
+	![Enterprise applications pane](common/enterprise-applications.png)
 
-2. In the applications list, select **Foodee**.
+1. In the **Applications** list, select **Foodee**.
 
-	![The Foodee  link in the Applications list](common/all-applications.png)
+	![The Foodee link in the Applications list](common/all-applications.png)
 
-3. Select the **Provisioning** tab.
+1. Select the **Provisioning** tab.
 
 	![Provisioning tab](common/provisioning.png)
 
-4. Set the **Provisioning Mode** to **Automatic**.
+1. In the **Provisioning Mode** drop-down list, select **Automatic**.
 
 	![Provisioning tab](common/provisioning-automatic.png)
 
-5. Under the Admin Credentials section, input the ` https://concierge.food.ee/scim/v2` and **API Token** values retrieved earlier in **Tenant URL** and **Secret Token** respectively. Click **Test Connection** to ensure Azure AD can connect to Foodee. If the connection fails, ensure your Foodee account has Admin permissions and try again.
+1. Under **Admin Credentials**, do the following:
 
-	![Tenant URL + Token](common/provisioning-testconnection-tenanturltoken.png)
+   a. In the **Tenant URL** box, enter the **https://concierge.food.ee/scim/v2** value that you retrieved earlier.
 
-6. In the **Notification Email** field, enter the email address of a person or group who should receive the provisioning error notifications and check the checkbox - **Send an email notification when a failure occurs**.
+   b. In the **Secret Token** box, enter the **API Token** value that you retrieved earlier.
+   
+   c. To ensure that Azure AD can connect to Foodee, select **Test Connection**. If the connection fails, ensure that your Foodee account has administrator permissions, and then try again.
 
-	![Notification Email](common/provisioning-notification-email.png)
+	![The Test Connection link](common/provisioning-testconnection-tenanturltoken.png)
 
-7. Click **Save**.
+1. In the **Notification Email** box, enter the email address of a person or group who should receive the provisioning error notifications, and then select the **Send an email notification when a failure occurs** check box.
 
-8. Under the **Mappings** section, select **Synchronize Azure Active Directory Users to Foodee**.
+	![The Notification Email text box](common/provisioning-notification-email.png)
 
-	![Foodee User Mappings](media/Foodee-provisioning-tutorial/usermapping.png)
+1. Select **Save**.
 
-9. Review the user attributes that are synchronized from Azure AD to Foodee  in the **Attribute Mapping** section. The attributes selected as **Matching** properties are used to match the user accounts in Foodee  for update operations. Select the **Save** button to commit any changes.
+1. Under **Mappings**, select **Synchronize Azure Active Directory Users to Foodee**.
 
-	![Foodee  User Attributes](media/Foodee-provisioning-tutorial/userattribute.png)
+	![Foodee user mappings](media/Foodee-provisioning-tutorial/usermapping.png)
 
-10. Under the **Mappings** section, select **Synchronize Azure Active Directory Groups to **Foodee**
+1. Under **Attribute Mappings**, review the user attributes that are synchronized from Azure AD to Foodee. The attributes that are selected as **Matching** properties are used to match the *user accounts* in Foodee for update operations. 
 
-	![Foodee  User Attributes](media/Foodee-provisioning-tutorial/groupmapping.png)
+	![Foodee user mappings](media/Foodee-provisioning-tutorial/userattribute.png)
 
-11. Review the user attributes that are synchronized from Azure AD to Foodee  in the **Attribute      Mapping** section. The attributes selected as **Matching** properties are used to match the       group accounts in Foodee  for update operations. Select the **Save** button to commit any         changes.
+1. To commit your changes, select **Save**.
+1. Under **Mappings**, select **Synchronize Azure Active Directory Groups to Foodee**.
 
-	![Foodee  User Attributes](media/Foodee-provisioning-tutorial/groupattribute.png)
+	![Foodee user mappings](media/Foodee-provisioning-tutorial/groupmapping.png)
 
-12. To configure scoping filters, refer to the following instructions provided in the [Scoping filter tutorial](../manage-apps/define-conditional-rules-for-provisioning-user-accounts.md).
+1. Under **Attribute Mappings**, review the user attributes that are synchronized from Azure AD to Foodee. The attributes that are selected as **Matching** properties are used to match the *group accounts* in Foodee for update operations.
 
-13. To enable the Azure AD provisioning service for Foodee, change the **Provisioning Status** to **On** in the **Settings** section.
+	![Foodee user mappings](media/Foodee-provisioning-tutorial/groupattribute.png)
 
-	![Provisioning Status Toggled On](common/provisioning-toggle-on.png)
+1. To commit your changes, select **Save**.
+1. Configure the scoping filters. To learn how, refer to the instructions in the [Scoping filter tutorial](../manage-apps/define-conditional-rules-for-provisioning-user-accounts.md).
 
-14. Define the users and/or groups that you would like to provision to Foodee  by choosing the desired values in **Scope** in the **Settings** section.
+1. To enable the Azure AD provisioning service for Foodee, in the **Settings** section, change the **Provisioning Status** to **On**.
 
-	![Provisioning Scope](common/provisioning-scope.png)
+	![The Provisioning Status switch](common/provisioning-toggle-on.png)
 
-15. When you are ready to provision, click **Save**.
+1. Under **Settings**, in the **Scope** drop-down list, define the users or groups that you want to provision to Foodee.
 
-	![Saving Provisioning Configuration](common/provisioning-configuration-save.png)
+	![The Provisioning Scope drop-down list](common/provisioning-scope.png)
 
-This operation starts the initial synchronization of all users and/or groups defined in **Scope** in the **Settings** section. The initial sync takes longer to perform than subsequent syncs. For more information on how long it will take for users and/or groups to provision, see [How long will it take to provision users](../manage-apps/application-provisioning-when-will-provisioning-finish-specific-user.md#how-long-will-it-take-to-provision-users).
+1. When you're ready to provision, select **Save**.
 
-You can use the **Current Status** section to monitor progress and follow links to your provisioning activity report, which describes all actions performed by the Azure AD provisioning service on Foodee. For more information, see [Check the status of user provisioning](../manage-apps/application-provisioning-when-will-provisioning-finish-specific-user.md). To read the Azure AD provisioning logs, see [Reporting on automatic user account provisioning](../manage-apps/check-status-user-account-provisioning.md).
+	![The Provisioning Configuration Save button](common/provisioning-configuration-save.png)
 
+The preceding operation starts the initial synchronization of the users or groups that you've defined in the **Scope** drop-down list. The initial sync takes longer to perform than subsequent syncs. For more information, see [How long will it take to provision users?](../manage-apps/application-provisioning-when-will-provisioning-finish-specific-user.md#how-long-will-it-take-to-provision-users).
 
+You can use the **Current Status** section to monitor progress and follow links to your provisioning activity report. The report describes all actions that are performed by the Azure AD provisioning service on Foodee. For more information, see [Check the status of user provisioning](../manage-apps/application-provisioning-when-will-provisioning-finish-specific-user.md). To read the Azure AD provisioning logs, see [Reporting on automatic user account provisioning](../manage-apps/check-status-user-account-provisioning.md).
 
 ## Additional resources
 
-* [Managing user account provisioning for Enterprise Apps](../manage-apps/configure-automatic-user-provisioning-portal.md)
+* [Manage user account provisioning for enterprise apps](../manage-apps/configure-automatic-user-provisioning-portal.md)
 * [What is application access and single sign-on with Azure Active Directory?](../manage-apps/what-is-single-sign-on.md)
 
 ## Next steps
