Perform operations in AzureAD using workflows and track apps, users and usage in Freshservice.
The Azure AD integration lets you automate repeatable actions within Freshservice and also helps you track accurate usage information for SaaS Management.
Orchestration apps give you the ability to automate several repeatable actions that span across a diverse set of systems by performing specific actions with Freshservice Workflows. With the Azure app you can perform actions for:
Add User to Group
Get Users Details by User ID
Get Users Details by Username
Revoke users sign in sessions by ID
Revoke users sign in sessions by username
Assign Manager to User
Get Users Manager By Username
Enable User by Username
Enable User by User ID
Check Is User Enabled By Username
Check Is User Enabled By ID
Lookup extension property
Get User Properties
Add User to Multiple Groups
Get Group Details
Remove Group Owner
Remove Group Member
Assign Group Ownership to User using User ID
Assign Group Ownership to User by Username
Add User to Multiple Groups
Get Application Details
Remove Application Password
Directory Objects Management
Delete Directory Object with ID
Get Organization Details
Add License To User with Username
Add License To User with ID
Remove Licenses with Username
Remove Licenses with ID
Add License to Group
Remove Licenses from Group
Freshservice’s direct integrations for SaaS management enables accurate and reliable user and usage data discovery. Integrate with Azure AD to:
Discover and track the usage of apps that employees authenticate using Azure AD.
Manage users and their data for these apps
Track their 60-day login history in Freshservice with a 24-hour sync ensuring updated information.
This integration requires the SaaS Management Add-on. More details can be found here.
To use this integration for SaaS Management,
Azure Active Directory App Should Be Created
Once you login into your account on the Azure portal and navigate to search for “Azure Active Directory”.
On the active directory page in the left side panel, Click on App Registrations
Then click on New registration
Enter a meaningful name for your app such as “fs-orchestration”
Click on Register
B. Permissions Should Be Assigned
In the Azure portal, go to Azure Active Directory,
Click on “App Registrations”, then select your app
Click on “API Permissions”
Then, “Add Permissions” > ”Microsoft Graph” > “Application Permissions”
Select the permissions mentioned below
Make sure you click on “Grant Admin Consent for Directory”
1. Client ID
2. Key (Secret Value)
3. Active Directory Domain
Installation Parameters Description
All installation parameters can be found in the Azure portal.
Once you login into your account on the Azure portal, navigate to search for “Azure Active Directory”.
On the active directory page in the left side panel, click on Overview > Copy “Primary Domain” i.e. your Active Directory Domain
App Registrations > Open App > Copy “Application (client) ID
App Registrations > Certificates & secrets (left panel) > Click on “New client secret” > Copy “Value”, which is your secret key.
Please ensure that you copy and save this key since it will not be visible post its creation.
- Sample Use case for Azure AD Orchestration App- Employee Onboarding
- Sample Use Case for Azure AD Orchestration App- M365 License Assignment during Onboarding