Add roles doc for Microsoft Entra ID

Author: jpipkin1

blog-service/2025-04-15-manage.md

@@ -11,7 +11,7 @@ import useBaseUrl from '@docusaurus/useBaseUrl';
 
 <a href="https://help.sumologic.com/release-notes-service/rss.xml"><img src={useBaseUrl('img/release-notes/rss-orange2.png')} alt="icon" width="50"/></a>
 
-We're excited to announce provisioning for Sumo Logic using SCIM (Cross-domain Identity Management). Now you can automatically provision and deprovision users in Sumo Logic from a provider like Microsoft Entra ID, Okta, or OneLogin.
+We're excited to announce provisioning for Sumo Logic using SCIM (Cross-domain Identity Management). Now you can automatically provision and deprovision users in Sumo Logic with a provider like Microsoft Entra ID, Okta, or OneLogin.
 
 Create an access key using a Sumo Logic service account to provide authentication for the provider to provision users into Sumo Logic.
 

docs/manage/security/scim/about-scim-provisioning.md

@@ -12,17 +12,17 @@ You can provision and deprovision users in Sumo Logic using SCIM (System for Cro
 ## Directions for provisioning providers
 
 See the following articles for directions to configure specific provisioning providers:
-* [Provision from Microsoft Entra ID](/docs/manage/security/scim/provision-from-microsoft-entra-id/)
-* [Provision from Okta](/docs/manage/security/scim/provision-from-okta/)
-* [Provision from OneLogin](/docs/manage/security/scim/provision-from-onelogin/)
+* [Provision with Microsoft Entra ID](/docs/manage/security/scim/provision-with-microsoft-entra-id/)
+* [Provision with Okta](/docs/manage/security/scim/provision-with-okta/)
+* [Provision with OneLogin](/docs/manage/security/scim/provision-with-onelogin/)
 
 ## Prerequisites
 
 ### Create an access key
 
 Before configuring a provisioning provider, create an [access key](/docs/manage/security/access-keys/) using a service account. This access key will provide authorization to provision users from the provider into Sumo Logic.
 
-When you create the access key, copy its access ID and access key values. Depending on the provider you configure, you will enter these when you set up provisioning to use one of the following authorization methods:
+When you create the access key, copy its access ID and access key values. You will enter these when you set up provisioning to use one of the following authorization methods:
 * Basic authentication
    * Username: Access ID
    * Password: Access key

docs/manage/security/scim/index.md

@@ -1,7 +1,7 @@
 ---
 slug: /manage/security/scim
 title: SCIM Provisioning
-description: Learn how to provision users into Sumo Logic using SCIM. 
+description: Learn how to provision users in Sumo Logic using SCIM. 
 ---
 
 import useBaseUrl from '@docusaurus/useBaseUrl';
@@ -14,25 +14,25 @@ This section contains the following articles:
 <div className="box smallbox card">
   <div className="container">
   <a href="/docs/manage/security/scim/about-scim-provisioning"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>About SCIM Provisioning</h4></a>
-  <p>Learn about provisioning users into Sumo Logic using SCIM.</p>
+  <p>Learn about provisioning users in Sumo Logic using SCIM.</p>
   </div>
 </div>
 <div className="box smallbox card">
   <div className="container">
-  <a href="/docs/manage/security/scim/provision-from-microsoft-entra-id"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision from Microsoft Entra ID</h4></a>
-  <p>Learn how to provision users into Sumo Logic from Microsoft Entra ID (formerly Azure Active Directory).</p>
+  <a href="/docs/manage/security/scim/provision-with-microsoft-entra-id"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision with Microsoft Entra ID</h4></a>
+  <p>Learn how to provision users in Sumo Logic with Microsoft Entra ID (formerly Azure Active Directory).</p>
   </div>
 </div>
 <div className="box smallbox card">
   <div className="container">
-  <a href="/docs/manage/security/scim/provision-from-okta"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision from Okta</h4></a>
-  <p>Learn how to provision users into Sumo Logic from Okta</p>
+  <a href="/docs/manage/security/scim/provision-with-okta"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision with Okta</h4></a>
+  <p>Learn how to provision users in Sumo Logic with Okta</p>
   </div>
 </div>
 <div className="box smallbox card">
   <div className="container">
-  <a href="/docs/manage/security/scim/provision-from-onelogin"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision from OneLogin</h4></a>
-  <p>Learn how to provision users into Sumo Logic from OneLogin</p>
+  <a href="/docs/manage/security/scim/provision-with-onelogin"><img src={useBaseUrl('img/icons/general/session.png')} alt="icon" width="40"/><h4>Provision with OneLogin</h4></a>
+  <p>Learn how to provision users in Sumo Logic with OneLogin</p>
   </div>
 </div>
 </div>

…cim/provision-from-microsoft-entra-id.md …cim/provision-with-microsoft-entra-id.mddocs/manage/security/scim/provision-from-microsoft-entra-id.md renamed to docs/manage/security/scim/provision-with-microsoft-entra-id.md docs/manage/security/scim/provision-from-microsoft-entra-id.md renamed to docs/manage/security/scim/provision-with-microsoft-entra-id.md

@@ -1,19 +1,19 @@
 ---
-id: provision-from-microsoft-entra-id 
-title: Provision from Microsoft Entra ID
-sidebar_label: Provision from Microsoft Entra ID
-description: Learn how to provision users into Sumo Logic from Microsoft Entra ID (formerly Azure Active Directory). 
+id: provision-with-microsoft-entra-id 
+title: Provision with Microsoft Entra ID
+sidebar_label: Provision with Microsoft Entra ID
+description: Learn how to provision users in Sumo Logic with Microsoft Entra ID (formerly Azure Active Directory). 
 ---
 
 import useBaseUrl from '@docusaurus/useBaseUrl';
 
-This article describes how to provision users into Sumo Logic with Microsoft Entra ID (formerly Azure Active Directory).
+This article describes how to provision users in Sumo Logic with Microsoft Entra ID (formerly Azure Active Directory).
 
 ## Prerequisites
 
 ### Create an access key
 
-Create an [access key](/docs/manage/security/access-keys/) using a service account. This access key will provide authorization to provision users from Okta into Sumo Logic.
+Create an [access key](/docs/manage/security/access-keys/) using a service account. This access key will provide authorization to provision users from Microsoft Entra ID into Sumo Logic.
 
 When you create the access key, copy its access ID and access key values. You will enter these when you use [Base64 encoding](https://www.base64encode.org/) to Base64 encode `<access ID>:<access key>` to generate a token.
 
@@ -31,27 +31,42 @@ When you create the access key, copy its access ID and access key values. You wi
 
 ### Step 2: Set up single sign-on
 
-Follow the directions in [Configure Sumo as an Enterprise App in Azure AD](/docs/manage/security/saml/integrate-sumo-with-azure-ad/#configure-saml-in-sumo-logic) beginning with the step where you select **Set up single sign-on**. 
+Follow the directions in [Configure Sumo as an Enterprise App in Azure AD](/docs/manage/security/saml/integrate-sumo-with-azure-ad/#configure-saml-in-sumo-logic) beginning with the step where you select **Set up single sign on**. 
 
 <img src={useBaseUrl('img/security/provision-azure-set-up-sso.png')} alt="Set up single sign on" style={{border: '1px solid gray'}} width="600" />
 
 When you [configure SAML in Sumo Logic](/docs/manage/security/saml/integrate-sumo-with-azure-ad/#configure-saml-in-sumo-logic):
-* Select **Disable Requested Authentication Context**
-* Do not select the **On Demand Provisioning** checkbox. You will set up provisioning later. 
+* Select **Disable Requested Authentication Context**.
+* Do not select the **On Demand Provisioning** checkbox. You will set up provisioning later.
 
-### Step 3: Assign users to the app
+### Step 3: Add roles
+
+Create roles that the users will have in Sumo Logic (for example, `Analyst` and `Administrator`).
+
+1. In the app, select **Manage > Users and groups**.
+1. Select **application registration**.<br/><img src={useBaseUrl('img/security/provision-azure-app-registration.png')} alt="Add users" style={{border: '1px solid gray'}} width="700" />
+1. Click **Create app role**.<br/><img src={useBaseUrl('img/security/provision-azure-create-app-role.png')} alt="Create app role" style={{border: '1px solid gray'}} width="700" />
+1. Create the role:
+   1. In **Display name**, enter the name to be displayed in the UI (for example, `Analyst`).
+   1. For **Allowed member types** select **Both**.
+   1. For **Value** enter the value of the role in Sumo Logic (for example, `Analyst`).
+   1. For **Description** enter a description of the role.
+   1. Click **Apply**.<br/><img src={useBaseUrl('img/security/provision-azure-create-app-role-dialog.png')} alt="Create app role dialog" style={{border: '1px solid gray'}} width="400" />
+
+### Step 4: Assign users to the app
 
 1. In the app, select **Manage > Users and groups**. 
 1. Select **Add user/group**.<br/><img src={useBaseUrl('img/security/provision-azure-add-users.png')} alt="Add users" style={{border: '1px solid gray'}} width="600" />
-1. Select **Users**.
-1. From the list of available users, select users to add to the app.
-1. Click **Select**.
+1. Under **Users**, click **None Selected**.<br/><img src={useBaseUrl('img/security/provision-azure-add-assignment.png')} alt="Add Assignment" style={{border: '1px solid gray'}} width="400" />
+1. From the list of available users, select users to add to the app and click **Select**.
+1. Under **Select a role** click **None Selected**.
+1. From the list of available roles, select a role (for example, **Analyst**).
 1. Click **Assign**.
 
-### Step 4: Set up provisioning
+### Step 5: Set up provisioning
 
 1. In the app select **Manage > Provisioning**.<br/><img src={useBaseUrl('img/security/provision-azure-provisioning.png')} alt="Connect your application" style={{border: '1px solid gray'}} width="600" />
-1. For **Provisioning Mode** select **Automatic**.
+1. For **Provisioning Mode**, select **Automatic**.
 1. Enter **Admin Credentials**:
    1. In **Tenant URL**, enter the [API endpoint for your deployment](/docs/api/getting-started/#sumo-logic-endpoints-by-deployment-and-firewall-security) for the SCIM API using the format `<api-endpoint>/v1/scim/`. For example, `https://api.sumologic.com/api/v1/scim`.
    1. For **Secret Token**, use [Base64 encoding](https://www.base64encode.org/) to encode `<access ID>:<access key>` (see [Prerequisites](#prerequisites)). Enter the resulting value into the **Secret Token** field.
@@ -73,24 +88,31 @@ When you [configure SAML in Sumo Logic](/docs/manage/security/saml/integrate-sum
       * roles[primary eq "True"].value
    1. Click **Save**.<br/><img src={useBaseUrl('img/security/provision-azure-attribute-mappings.png')} alt="Attribute mappings" style={{border: '1px solid gray'}} width="600" />
 1. Click the **Home > `<app name>` | Provisioning** link in the top left corner of the screen. This returns you to the **Provisioning** tab.
+1. Test provisioning:
+   1. In the app, select **Manage > Provisioning**.
+   1. For **Provisioning Status** select **On** to enable provisioning.
+   1. Click **Save**.<br/><img src={useBaseUrl('img/security/provision-azure-provisioning-status.png')} alt="Provisioning status" style={{border: '1px solid gray'}} width="600" />
+   1. Select **Overview**.
+   1. Select **Provision on demand**.<br/><img src={useBaseUrl('img/security/provision-azure-provision-on-demand.png')} alt="Provision on demand" style={{border: '1px solid gray'}} width="600" />
+   1. Users assigned the app will be provisioned into Sumo Logic. 
 
-### Step 5: Test provisioning
+As long as the app's provisioning status is on, the app runs auto provisioning every 40 minutes.
 
-1. In the app, select **Manage > Provisioning**.
-1. For **Provisioning Status** select **On** to enable provisioning.
-1. Click **Save**.<br/><img src={useBaseUrl('img/security/provision-azure-provisioning-status.png')} alt="Provisioning status" style={{border: '1px solid gray'}} width="600" />
-1. Select **Overview**.
-1. Select **Provision on demand**.<br/><img src={useBaseUrl('img/security/provision-azure-provision-on-demand.png')} alt="Provision on demand" style={{border: '1px solid gray'}} width="600" />
-1. Users assigned the app will be provisioned into Sumo Logic. 
+### Step 6: Verify provisioning
 
-As long as the app's provisioning status is on, the app runs auto provisioning every 40 minutes.
+Users assigned to the app are provisioned into Sumo Logic. 
 
-:::note
-By default, users will be assigned the `User` role in Sumo Logic. (The `User` role must already be set up in Sumo Logic to allow users to be provisioned with that role.)
-:::
+1. Verify in Microsoft Entra ID:
+   1. In the app, select **Provisioning** and then select the **Monitoring** tab.
+   1. The tab should show provisioning status. Click **View Provisioning Logs** for details.
+1. Verify in Sumo Logic:
+   1. Log in to the Sumo Logic instance that you linked to the provisioning app in Step 2 when you provided the Assertion Consumer URL and entity ID.
+   1. [**Classic UI**](/docs/get-started/sumo-logic-ui-classic). In the main Sumo Logic menu, select **Administration > Users and Roles > Users**. <br/>[**New UI**](/docs/get-started/sumo-logic-ui). In the top menu select **Administration**, and then under **Users and Roles** select **Users**. You can also click the **Go To...** menu at the top of the screen and select **Users**. 
+   1. Search for the users provisioned from Microsoft Entra ID. 
+   1. You should see the users listed, and with the role given to when you assigned them to the app in Microsoft Entra ID.
 
 ## Syncing between Microsoft Entra ID and Sumo Logic
 
-When you modify the name or email of a user assigned the app in Microsoft Entra ID, the changes will be synced to the corresponding user in Sumo Logic.
+When you modify the name, email, or role of a user assigned the app in Microsoft Entra ID, the changes will be synced to the corresponding user in Sumo Logic.
 
 If you unassign a user from the app in Microsoft Entra ID, the corresponding user is deactivated in Sumo Logic. (If you later try to reassign that same user to the app, it will result in an error in Sumo Logic. You must delete the old user from Sumo Logic first so that the user can be provisioned once again from Microsoft Entra ID.)

…age/security/scim/provision-from-okta.md …age/security/scim/provision-with-okta.mddocs/manage/security/scim/provision-from-okta.md renamed to docs/manage/security/scim/provision-with-okta.md docs/manage/security/scim/provision-from-okta.md renamed to docs/manage/security/scim/provision-with-okta.md

@@ -1,13 +1,13 @@
 ---
-id: provision-from-okta 
-title: Provision from Okta
-sidebar_label: Provision from Okta
-description: Learn how to provision users into Sumo Logic from Okta. 
+id: provision-with-okta 
+title: Provision with Okta
+sidebar_label: Provision with Okta
+description: Learn how to provision users in Sumo Logic with Okta. 
 ---
 
 import useBaseUrl from '@docusaurus/useBaseUrl';
 
-This article describes how to provision users into Sumo Logic with Okta.
+This article describes how to provision users in Sumo Logic with Okta.
 
 ## Prerequisites
 
@@ -23,7 +23,7 @@ When you create the access key, copy its access ID and access key values. You wi
 
 ### Set up SAML
 
-If it is not already set up, [set up SAML for single sign-on with Okta](/docs/manage/security/saml/integrate-sumo-logic-with-okta/) in the Sumo Logic instance where you will provision users. This will allow connection to Sumo Logic for provisioning. Copy the single sign-on URL (Assertion Consumer URL) and entity ID from your Sumo Logic [SAML configuration](/docs/manage/security/saml/set-up-saml/#review-saml-configuration). You will use them when you set up provisioning.
+If it is not already set up, [set up SAML for single sign-on with Okta](/docs/manage/security/saml/integrate-sumo-logic-with-okta/) in the Sumo Logic instance where you will provision users. This will allow connection to Sumo Logic for provisioning. Copy the single sign-on URL (Assertion Consumer URL) and entity ID from your Sumo Logic SAML configuration. You will use them when you set up provisioning.
 
 <img src={useBaseUrl('img/security/provision-sumo-logic-saml-settings.png')} alt="ACS and entity ID from Sumo Logic" style={{border: '1px solid gray'}} width="800" />
 
@@ -148,10 +148,10 @@ If it is not already set up, [set up SAML for single sign-on with Okta](/docs/ma
 
 As soon as users are assigned to the app, they are provisioned into Sumo Logic. 
 
-1. Verify in Okta.
+1. Verify in Okta:
    1. Navigate to **Reports > System Log** to see the log. 
    1. The log should show that users you added to the app are pushed to Sumo Logic with an event info message like **Push new user to external application SUCCESS**.
-1. Verify in Sumo Logic.
+1. Verify in Sumo Logic:
    1. Log in to the Sumo Logic instance that you linked to the provisioning app in Step 2 when you provided the Assertion Consumer URL and entity ID.
    1. [**Classic UI**](/docs/get-started/sumo-logic-ui-classic). In the main Sumo Logic menu, select **Administration > Users and Roles > Users**. <br/>[**New UI**](/docs/get-started/sumo-logic-ui). In the top menu select **Administration**, and then under **Users and Roles** select **Users**. You can also click the **Go To...** menu at the top of the screen and select **Users**. 
    1. Search for the users provisioned from Okta. 

…security/scim/provision-from-onelogin.md …security/scim/provision-with-onelogin.mddocs/manage/security/scim/provision-from-onelogin.md renamed to docs/manage/security/scim/provision-with-onelogin.md docs/manage/security/scim/provision-from-onelogin.md renamed to docs/manage/security/scim/provision-with-onelogin.md

@@ -1,13 +1,13 @@
 ---
-id: provision-from-onelogin 
-title: Provision from OneLogin
-sidebar_label: Provision from OneLogin
-description: Learn how to provision users into Sumo Logic from OneLogin. 
+id: provision-with-onelogin 
+title: Provision with OneLogin
+sidebar_label: Provision with OneLogin
+description: Learn how to provision users in Sumo Logic with OneLogin. 
 ---
 
 import useBaseUrl from '@docusaurus/useBaseUrl';
 
-This article describes how to provision users into Sumo Logic with OneLogin.
+This article describes how to provision users in Sumo Logic with OneLogin.
 
 ## Prerequisites
 
@@ -117,7 +117,20 @@ On the **Configuration** tab, for **SCIM Base URL** enter the [API endpoint for
    1. Select **Users**.
    1. Click **Pending** on the user you want to approve for provisioning.<br/><img src={useBaseUrl('img/security/provision-onelogin-approve-user.png')} alt="Pending user" style={{border: '1px solid gray'}} width="800" />
    1. Click **Approve**.<br/><img src={useBaseUrl('img/security/provision-onelogin-approve-dialog.png')} alt="Approve dialog" style={{border: '1px solid gray'}} width="400" />
-   1. The user is provisioned to Sumo Logic.
+   1. The user is provisioned to Sumo Logic.f
+
+### Step 6: Verify provisioning
+
+Users assigned to the app are provisioned into Sumo Logic. 
+
+1. Verify in OneLogin:
+   1. In the main menu, select **Provisioning** and then select the **Monitoring** tab.
+   1. The events for provisioned users should appear. Click an event for details.
+1. Verify in Sumo Logic:
+   1. Log in to the Sumo Logic instance that you linked to the provisioning app in Step 2 when you provided the Assertion Consumer URL and entity ID.
+   1. [**Classic UI**](/docs/get-started/sumo-logic-ui-classic). In the main Sumo Logic menu, select **Administration > Users and Roles > Users**. <br/>[**New UI**](/docs/get-started/sumo-logic-ui). In the top menu select **Administration**, and then under **Users and Roles** select **Users**. You can also click the **Go To...** menu at the top of the screen and select **Users**. 
+   1. Search for the users provisioned from OneLogin. 
+   1. You should see the users listed, and with the role given to when you assigned them to the app in OneLogin.
 
 ## Syncing between OneLogin and Sumo Logic
 

sidebars.ts

@@ -1102,9 +1102,9 @@ module.exports = {
           link: {type: 'doc', id: 'manage/security/scim/index'},
           items: [
             'manage/security/scim/about-scim-provisioning',
-            'manage/security/scim/provision-from-microsoft-entra-id',
-            'manage/security/scim/provision-from-okta',
-            'manage/security/scim/provision-from-onelogin',
+            'manage/security/scim/provision-with-microsoft-entra-id',
+            'manage/security/scim/provision-with-okta',
+            'manage/security/scim/provision-with-onelogin',
           ]
         },
         'manage/security/set-password-policy',