Skip to main content

Entra ID (Azure AD)

Kimmie Meunier
Updated

Audience: Administrators

 

Overview

Entra ID (formerly Azure AD) is a single-sign-on, enterprise identity service that allows HR departments to store and access their data in one secure location. OrgChart directly connects with Entra ID to pull organizational data.

The following article provides detailed information on:

Note

Clients can also use Entra ID to access OrgChart via SSO. For more information on how to set up Entra ID for SSO, please reference theEntra ID SSO article.

 

Entra ID integration FAQ

  1. Can I pull photos from Entra ID into my org charts?

    Yes. Reference the Pulling Photos with Entra ID section below.

  2. Can I limit the fields that a user is able to pull from Entra ID?

    Yes. Reference the Setting up your Entra ID integration in OrgChart section below for more information.

  3. What fields can I pull from Entra ID?

    Orgchart can pull mot fields that are associated with an employee record from Entra ID. Contract OrgChart Support to confirm whether or not we can pull specific fields.

  4. Can I merge data from a secondary source with Entra ID data?

    Yes. To learn how to aggregate data, please reference the Data Aggregation article.

  5. Can I embed org charts (generated from Ceridian data) into my intranet?

    Yes. To learn how to create links to your org charts, please reference the Web Link article.

  6. Can I add open requisitions from Entra ID Recruiting into my org charts?

    Yes. You can append your Entra ID data with data from your Applicant Tracking System. Reference the OrgChart Integrations page to verify that OrgChart supports your Applicant Tracking System.

  7. Can I filter which records are included in my org charts?

    Yes. OrgChart administrators can create Import Filters to limit the records that are included in your charts.

Configuring your Entra ID account to integrate with OrgChart

Important

In order to complete the following configuration steps, you will need the following permissions:

  • Application Administrator
  • Cloud Application Administrator
  • Privileged Role Administrator

1. Log in to Azure AD.

2. Navigate to the Microsoft Entra ID resource.

3. Click on the + Add button, and then select App registration from the dropdown menu.

4. Enter a name for the application (i.e OrgChart app).

5. Under the Support account types, select the radio button next to the access option that best fit your needs. Most clients select the 'Accounts in this organizational directory only (CompanyName - Single tenant)' option.

6. Click on Register.

7. Your application details are displayed. Take note of the Application (client) ID, as this value is necessary for completing the Entra ID integration in OrgChart.

8. Expand the Manage section of the left hand side bar, and the select the Certificates & secrets option.

9. Click on the + New client secret option.

10. Enter a description for the client secret in the Description textbox, and then select the 365 (12 months) option from the Expires dropdown.

11. Click on Add.

12. The Client secret is displayed.

Click on the copy button to copy the Client secret value, and then paste the value in a secure document.

Click on the copy button to copy the Secret ID, and then paste the value in a secure document.

Note

This is the only time you will be able to copy these keys. You will need both of these values to complete the Entra ID integration in OrgChart.

13. Click on the API permissions option in the left-hand side bar, and then click on + Add a permission.

14. Click on Microsoft Graph.

15. Click on Application permissions

16. Scroll down, and then click on User. Select the User.Read.All option.

17. Click on Add permissions.

18. Click on Grant admin consent for your company.

19. Click on Yes to confirm the admin consent.

20. Reference the instructions in the Setting up your Entra ID integration in OrgChart section of this article to finish setting up your Entra ID integration in OrgChart.

Setting up your Entra ID integration in OrgChart

 

1. Click on the Settings button in the bottom right corner, and then select the Chart Settings option from the list.

2. Click on the 'Click here to select data source' hyperlink under the Main data source heading.

3. Select Entra ID from the list of main data sources.

4. Click on the Subdomain text box, and then enter your Entra ID Tenant ID

5. Click on the Client ID textbox, and then enter the Application (client) ID associated with the registered app in Entra ID.

6. Click on the Client Secret textbox, and then enter the Client secret value generated in the Certificates & Secrets panel of the registered app in Entra ID.

7. Optionally, click on the Additional fields textbox, and then enter any additional fields that you'd like to pull into OrgChart.

Note

Additional fields may include extension attributes. Extension attributes should be entered in this textbox using the following formatting:
extension_ApplicationClientID_AttributeName,. For example, the entry would look like this: extension_1234567-891011_extensionattribute12,

 

8. Optionally, enter a filter to only pull specific records into OrgChart.

Note

For advanced Entra ID queries, please check the Use advanced Entra Query checkbox.

9. Click on the Validate button to ensure that your credentials are valid.

Note

If authorization fails, a failed authorization alert is displayed, which details the invalid credentials. Re-enter valid credential, and then re-test until you receive a successful authorization.

10. Click Save to preserve your changes.

11. Click on the Save button in the Chart Settings: Data sources panel, and then click on Refresh.

 

Pulling photos from Entra ID into OrgChart

OrgChart can pull photos directly from your Entra ID account for display in chart boxes and employee profiles. Pulling photos from Entra ID requires:

Additional photo configuration

1. Click on the Settings button in the bottom right corner, and then select the Chart Settings option from the list.

2. Scroll down to the Additional Photo Configuration heading, and then click on the Click here to select data source hyperlink.

3. Click on the Entra ID option.

4. Click on Configure.

5. In the Subdomain textbox, enter your Entra ID Tenant ID

6. In the Client ID textbox, enter the Application (client) ID associated with the registered app in Entra ID.

7. In the Client Secret text box, enter the client secret value generated in the Certificates & Secrets panel of the registered app in Entra ID.

8. Click on the Validate button to ensure that your credentials are valid.

Note

If authorization fails, a failed authorization alert is displayed, which details the invalid credentials. Re-enter valid credential, and then re-test until you receive a successful authorization.

9. Click on Save to preserve your changes.

10. Click on the Save button in the Chart Settings: Data sources panel, and then click on Refresh.

 11. Finish importing your Entra ID photos by creating a photo formula. Reference the Setting up an Entra ID photo formula section to finish pulling your Entra ID photos into OrgChart.

Creating an Entra ID photo formula

1. In Chart Settings, click on the Fields & formulas tab.

2. Click on the Create formula button, and then select the Static formula option from the dropdown menu.

3. Enter a name for the formula (i.e. Photo) in the Formula name text box, and then click on the + button.

4. Select the concatenate option from the dropdown menu.

5. Click on the +Add new value button.

6. Type /o365/in the textbox, and then click on the + Add new value button.

7. Click on the Type dropdown menu, and then select the Field lookup option.

8. Search for Email and then select it from the dropdown menu.

9. Click on Save to preserve your changes.

10. Click on Save in the Chart Settings: Fields and Formulas panel, and then click on Refresh.

The Photo field can now be added to chart boxes.

Related articles

Comments

0 comments

Please sign in to leave a comment.