Beta Status ENTRA ID

Modified on Wed, 12 Nov at 4:02 PM

Starting with au2mator Self-Servic Portal Release 5.1.0, you can use Azure Entra ID Integration. This means you are no longer limited to Active Directory when using the au2mator Self-Service Portal.

Beta Status means there may be some issues until the Final Release of this Feature, and the Setup is not yet as smooth as it will be.

Steps to use Entra ID Integration

During the initial Setup, you can choose Azure Entra ID Authentication
Follow the instructions to prepare an Azure App Reg: App Reg for Entra ID
Continue setup and log in with your Entra ID User Credentials
Disable Windows Auth in au2mator IIS Setting

Migration Steps will be communicated once we have a final Feature.

If you are willing to test ENTRA ID Integration and provide us with some feedback via support@au2mator.com, we will give away our famous Hoodies, which you can see here: LinkedIn Post

TABLE OF CONTENTS

BETA TEST Workflow

BETA TEST Workflow

THIS IS STIL IN BETA; SO DO NOT USE YOUR MAIN DATABASE DIRECTLY

STEP 1: App Reg

Please follow This Link to prepare an App Reg: How to create App Reg for Entra ID Integration

STEP 2: Copy Backup au2mator DB

Please make a backup copy of your existing automation DB. This will be used for our Beta Testing.

You can use the following SQL Script as a reference, you have to adjust the Names and Paths

BACKUP DATABASE au2mator
TO DISK = 'C:\_au2mator\au2mator.bak'
WITH COPY_ONLY, INIT


RESTORE DATABASE BETATEST_au2mator
FROM DISK = 'C:\_au2mator\BAK\PROD_DEMO.bak'
WITH  MOVE 'au2mator' TO 'C:\_au2mator\BAK\BETATEST_au2mator.mdf',
MOVE 'au2mator_log' TO 'C:\_au2mator\BAK\BETATEST_au2mator.log'

/*RESTORE FILELISTONLY FROM DISK = 'C:\_au2mator\BAK\PROD_DEMO.bak'*/

STEP 3: Prepare IIS

We are recommending running the au2mator BETA on the same IIS.

- Create a new Directory in inetpub with name "BETATEST_au2mator"

- Add a new Website in IIS with Name "BETATEST_au2mator"

- choose the exisating au2mator app Pool for the new Website

- Use the Physical path to the newly created Directory

- Configure a Binding

Make sure to enter the configured URL in the Redirect URI in the App Reg from Step 1

STEP 4: Download the BETA Files

Click here to download the Files - BETA TESTING

STEP 5: Extracte Files

Extract the File to the newly created "BETATEST_au2mator" Folder in inetpub from Step 3

STEP 6: Adjust appsettings.json

- Adjust DomainSearchRoot

- Adjust DefaultConnection

- Adjust the App Reg Details, TenantName, ClientID, Secret

STEP 7: Admin Group

- Create or define an au2mator Admin Group in Entra ID

- Note the Object ID of the au2mator Admin Group in Entra

- Make sure your user is a Member of that Group in Entra

STEP 8: Update SQL with Entra Group ID

- run the following SQL Command against your BETATEST_au2mator DB

- replace "ENTRA ID GROUP Object ID" with the Object ID

update Settings
set Label = 'ENTRA ID GROUP Object ID'
where Type = '35'

STEP 9: Update User Relations

As we change the User Relations from SamAccountName to UPN, we must also adjust this in the Database.

For this you can use the following PS Script: au2mator-PS-Templates/Migrate2Entra.ps1 at main · au2mator/au2mator-PS-Templates

STEP 10: Start your Website and Open the URL in your Browser

Step 11: Login and Adjust Security Groups, Approvers

- If used, please adopt and change all Security Groups for Services and Service Groups

- If used, please adopt and change all Approvers