Merge pull request #191729 from bhavana-129/netskope-update

tamarakhader · web-flow · commit c84015fa9f53 · 2022-03-17T10:59:57.000+03:00
Product Backlog Item 1814845: SaaS App Tutorial: Netskope Cloud Secur…
diff --git a/articles/active-directory/saas-apps/netskope-cloud-security-tutorial.md b/articles/active-directory/saas-apps/netskope-cloud-security-tutorial.md
@@ -1,5 +1,5 @@
 ---
-title: "Tutorial: Azure Active Directory single sign-on (SSO) integration with Netskope Administrator Console | Microsoft Docs"
+title: 'Tutorial: Azure AD SSO integration with Netskope Administrator Console'
 description: Learn how to configure single sign-on between Azure Active Directory and Netskope Administrator Console.
 services: active-directory
 author: jeevansd
@@ -9,30 +9,32 @@ ms.service: active-directory
 ms.subservice: saas-app-tutorial
 ms.workload: identity
 ms.topic: tutorial
-ms.date: 04/02/2021
+ms.date: 03/15/2022
 ms.author: jeedes
 ---
 
-# Tutorial: Azure Active Directory single sign-on (SSO) integration with Netskope Administrator Console
+# Tutorial: Azure AD SSO integration with Netskope Administrator Console
 
 In this tutorial, you'll learn how to integrate Netskope Administrator Console with Azure Active Directory (Azure AD). When you integrate Netskope Administrator Console with Azure AD, you can:
 
-- Control in Azure AD who has access to Netskope Administrator Console.
-- Enable your users to be automatically signed-in to Netskope Administrator Console with their Azure AD accounts.
-- Manage your accounts in one central location - the Azure portal.
+* Control in Azure AD who has access to Netskope Administrator Console.
+* Enable your users to be automatically signed-in to Netskope Administrator Console with their Azure AD accounts.
+* Manage your accounts in one central location - the Azure portal.
 
 ## Prerequisites
 
 To get started, you need the following items:
 
-- An Azure AD subscription. If you don't have a subscription, you can get a [free account](https://azure.microsoft.com/free/).
-- Netskope Administrator Console single sign-on (SSO) enabled subscription.
+* An Azure AD subscription. If you don't have a subscription, you can get a [free account](https://azure.microsoft.com/free/).
+* Netskope Administrator Console single sign-on (SSO) enabled subscription.
 
 ## Scenario description
 
 In this tutorial, you configure and test Azure AD SSO in a test environment.
 
-- Netskope Administrator Console supports **SP and IDP** initiated SSO.
+* Netskope Administrator Console supports **SP and IDP** initiated SSO.
+
+* Netskope Administrator Console supports just-in-time user provisioning.
 
 > [!NOTE]
 > Identifier of this application is a fixed string value so only one instance can be configured in one tenant.
@@ -71,7 +73,7 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 
    ![Edit Basic SAML Configuration](common/edit-urls.png)
 
-1. On the **Basic SAML Configuration** section, if you wish to configure the application in **IDP** initiated mode, enter the values for the following fields:
+1. On the **Basic SAML Configuration** section, if you wish to configure the application in **IDP** initiated mode, perform the following step:
 
    In the **Reply URL** text box, type a URL using the following pattern:
    `https://<tenant_host_name>/saml/acs`
@@ -180,44 +182,24 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
 ### Create Netskope Administrator Console test user
 
-1. Open a new tab in your browser, and sign in to your Netskope Administrator Console company site as an administrator.
-
-1. Click on the **Settings** tab from the left navigation pane.
-
-   ![Screenshot shows Settings selected.](./media/netskope-cloud-security-tutorial/configure-settings.png)
-
-1. Click **Active Platform** tab.
-
-   ![Screenshot shows Active Platform selected from Settings.](./media/netskope-cloud-security-tutorial/user-1.png)
-
-1. Click **Users** tab.
-
-   ![Screenshot shows Users selected from Active Platform.](./media/netskope-cloud-security-tutorial/add-user.png)
-
-1. Click **ADD USERS**.
-
-   ![Screenshot shows the Users dialog box where you can select ADD USERS.](./media/netskope-cloud-security-tutorial/user-add.png)
-
-1. Enter the email address of the user you want to add and click **ADD**.
-
-   ![Screenshot shows Add Users where you can enter a list of users.](./media/netskope-cloud-security-tutorial/add-user-popup.png)
+In this section, a user called B.Simon is created in Netskope Administrator Console. Netskope Administrator Console supports just-in-time user provisioning, which is enabled by default. There's no action item for you in this section. If a user doesn't already exist in Netskope Administrator Console, a new one is created after authentication.
 
 ## Test SSO
 
-In this section, you test your Azure AD single sign-on configuration with following options.
+In this section, you test your Azure AD single sign-on configuration with following options. 
 
 #### SP initiated:
 
-- Click on **Test this application** in Azure portal. This will redirect to Netskope Administrator Console Sign on URL where you can initiate the login flow.
+* Click on **Test this application** in Azure portal. This will redirect to Netskope Administrator Console Sign on URL where you can initiate the login flow.  
 
-- Go to Netskope Administrator Console Sign-on URL directly and initiate the login flow from there.
+* Go to Netskope Administrator Console Sign-on URL directly and initiate the login flow from there.
 
 #### IDP initiated:
 
-- Click on **Test this application** in Azure portal and you should be automatically signed in to the Netskope Administrator Console for which you set up the SSO
+* Click on **Test this application** in Azure portal and you should be automatically signed in to the Netskope Administrator Console for which you set up the SSO. 
 
-You can also use Microsoft My Apps to test the application in any mode. When you click the Netskope Administrator Console tile in the My Apps, if configured in SP mode you would be redirected to the application sign on page for initiating the login flow and if configured in IDP mode, you should be automatically signed in to the Netskope Administrator Console for which you set up the SSO. For more information about the My Apps, see [Introduction to the My Apps](https://support.microsoft.com/account-billing/sign-in-and-start-apps-from-the-my-apps-portal-2f3b1bae-0e5a-4a86-a33e-876fbd2a4510).
+You can also use Microsoft My Apps to test the application in any mode. When you click the Netskope Administrator Console tile in the My Apps, if configured in SP mode you would be redirected to the application sign on page for initiating the login flow and if configured in IDP mode, you should be automatically signed in to the Netskope Administrator Console for which you set up the SSO. For more information about the My Apps, see [Introduction to the My Apps](../user-help/my-apps-portal-end-user-access.md).
 
 ## Next steps
 
-Once you configure Netskope Administrator Console you can enforce session control, which protects exfiltration and infiltration of your organization’s sensitive data in real time. Session control extends from Conditional Access. [Learn how to enforce session control with Microsoft Defender for Cloud Apps](/cloud-app-security/proxy-deployment-any-app).
+Once you configure Netskope Administrator Console you can enforce session control, which protects exfiltration and infiltration of your organization’s sensitive data in real time. Session control extends from Conditional Access. [Learn how to enforce session control with Microsoft Defender for Cloud Apps](/cloud-app-security/proxy-deployment-any-app).
