You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/saas-apps/mx3-diagnostics-connector-provisioning-tutorial.md
+4-4Lines changed: 4 additions & 4 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -37,7 +37,7 @@ The scenario outlined in this tutorial assumes that you already have the followi
37
37
38
38
*[An Azure AD tenant](../develop/quickstart-create-new-tenant.md).
39
39
* A user account in Azure AD with [permission](../roles/permissions-reference.md) to configure provisioning (for example, Application Administrator, Cloud Application administrator, Application Owner, or Global Administrator).
40
-
*A MX3 account with organization feature.
40
+
*An MX3 account with organization feature.
41
41
* An account in MX3 Portal with SSO.
42
42
43
43
## Step 1. Plan your provisioning deployment
@@ -51,7 +51,7 @@ The scenario outlined in this tutorial assumes that you already have the followi
51
51
52
52
1. If your MX3 account does not have single-sign-on feature enabled, setup Azure AD SSO as described in this documentation.
53
53
54
-
1.Login to [MX3 Portal](https://portal.mx3.app). Navigate to the SSO settings page by clicking on settings and then click on **Single sign-on** or click [here](https://portal.mx3.app/settings/sso).
54
+
1.Log in to [MX3 Portal](https://portal.mx3.app). Navigate to the SSO settings page by clicking on settings and then click on **Single sign-on** or [click here](https://portal.mx3.app/settings/sso).
55
55
56
56
57
57
@@ -62,13 +62,13 @@ The scenario outlined in this tutorial assumes that you already have the followi
62
62
63
63
## Step 3. Add MX3 Diagnostics Connector from the Azure AD application gallery
64
64
65
-
Add MX3 Diagnostics Connector from the Azure AD application gallery to start managing provisioning to MX3 Diagnostics Connector. If you have previously setup MX3 Diagnostics Connector for SSO you can use the same application. However it is recommended that you create a separate app when testing out the integration initially. Learn more about adding an application from the gallery [here](../manage-apps/add-application-portal.md).
65
+
Add MX3 Diagnostics Connector from the Azure AD application gallery to start managing provisioning to MX3 Diagnostics Connector. If you have previously setup MX3 Diagnostics Connector for SSO, you can use the same application. However it is recommended that you create a separate app when testing out the integration initially. Learn more about adding an application from the gallery [here](../manage-apps/add-application-portal.md).
66
66
67
67
## Step 4. Define who will be in scope for provisioning
68
68
69
69
The Azure AD provisioning service allows you to scope who will be provisioned based on assignment to the application and or based on attributes of the user / group. If you choose to scope who will be provisioned to your app based on assignment, you can use the following [steps](../manage-apps/assign-user-or-group-access-portal.md) to assign users and groups to the application. If you choose to scope who will be provisioned based solely on attributes of the user or group, you can use a scoping filter as described [here](../app-provisioning/define-conditional-rules-for-provisioning-user-accounts.md).
70
70
71
-
* When assigning users and groups to MX3 Diagnostics Connector, you must select a role other than **Default Access**. Users with the Default Access role are excluded from provisioning and will be marked as not effectively entitled in the provisioning logs. If the only role available on the application is the default access role, you can [update the application manifest](../develop/howto-add-app-roles-in-azure-ad-apps.md) to add additional roles.
71
+
* When assigning users and groups to MX3 Diagnostics Connector, you must select a role other than **Default Access**. Users with the Default Access role are excluded from provisioning and will be marked as not effectively entitled in the provisioning logs. If the only role available on the application is the default access role, you can [update the application manifest](../develop/howto-add-app-roles-in-azure-ad-apps.md) to add more roles.
72
72
73
73
* Start small. Test with a small set of users and groups before rolling out to everyone. When scope for provisioning is set to assigned users and groups, you can control this by assigning one or two users or groups to the app. When scope is set to all users and groups, you can specify an [attribute based scoping filter](../app-provisioning/define-conditional-rules-for-provisioning-user-accounts.md).
0 commit comments