Support Support HYPERPLANNING

  • Delegate user authentication to the Azure portal

Users who connect to the base from a Client must authenticate themselves with a username and password. This step can be delegated to Azure Active Directory's integrated unique authentication service.
The controller must be deactivated before proceeding with the configuration.

Create a corporate application on the Azure portal

  1. Access to your Azur  portal
  2. Go to Azure Active Directory and select Corporate applications > All the applications.
  3. Click on New application.
  4. Click on Create your own application.
  5. Give your application a name and choose Integrate another application that you can't find in the gallery (non-gallery).
  6. In the pop-up window, choose Configure unique authentication.
  7. Choose the protocol SAML.
  8. In Part 3, SAM Certificates, copy the URL of the application federation metadata.
  9. Go to HYPERPLANNING hosting console to recover delegation information.

Delegate the authentication to the Client via a SAML2 Server

  1. From the panel Controller of the console , go to the tab Delegate the authentication.
  2. On the line SAML2 Protocol, click on the button to enter a new configuration. You can enter several per protocol, but only one can be activated (double-click in the column Active).

  1. In the pop-up window, enter:
    • a name for the delegation configuration.
    • the SAML server URL recovered from the Azure portal in the previous step, validating with the key Enter from your keyboard (recovery of the configuration XML file).
  2. If you want users to be able to access HYPERPLANNING without having to go through the SAML server, tick Authorize authentication by the Controller, without going through the SAML server. In this case, users will have to log in with their HYPERPLANNING username and password. Select whether this option is permanent or only available if the SAML server fails to respond.

  1. Click on the button Validate.
  2. In the column tick Active to activate the protocol and activate the Controller.
  3. Tick in the table to activate delegation for the Administrative mode.
  4. Activate the Controller.
  5. Click on the gearwheel next to the protocol you've created.

  1. Recover the XML configuration file to be used on the Azure portal by clicking on Download the configuration to send it to the server.

Configure the corporate application on the Azure portal

  1. Return to the unique authentication configuration on the Azure portal.
  2. Click on Load the metadata file and select the file configurationSaml.XML that you recovered in the previous step.
  3. In the pop-up window, click on Save.
  4. Go to Users and groups.
  5. Click on Add a user/group.
  6. Depending on your Active Directory plan, select the groups or individual users with access to HYPERPLANNING

Reconciling Azure users with HYPERPLANNING users

  1. Go to the portal Azure > Azure Active Directory > Users.
  2. Click on Download the users.
  3. Edit the downloaded csv file to replace commas with semicolons.
  4. Go to the display Communication > Identity management > Reconciliation of the identities of the Client HYPERPLANNING .
  5. Select Saml in the upper drop-down menu.
  6. Select Users in the lower drop-down menu.

  1. Click on to select the CSV file recovered in the previous step.
  2. In the pop-up window, click on Browse to identify the *.csv file.
  3. Select Semi-colon as a field separator.
  4. Reconcile the fields in the csv file with the fields available in HYPERPLANNING
    • userPrincipalName corresponds to Identifiant Partenaire;
    • surname corresponds to Nom;
    • givenName corresponds to Prénom.
  5. Select at least the fields surname and userPrincipalName. The field givenName is required for homonyms.
  6. Click on Import.
Was this content useful to you?
https://docs.index-education.com/docs_en/en-hyperplanning-support-page-198-3276-delegate-user-authentication-to-the-azure-portal.php

Can't find an answer to your question ?

Contact our support

INDEX ÉDUCATION | © 2024 - D