Skip to main content

Admin Synchronisation : Microsoft Entra ID API

Ian Finn
Updated

Admin Synchronisation via API connects your Microsoft Entra ID to your Phriendly Phishing account for company administrative requirements requiring access to the Phriendly Phishing platform. When an administrator is configured in your AD, they will automatically synchronise as an Admin in your Phriendly Phishing account. When an administrator is removed from your Microsoft Entra ID, they will also be removed from your Phriendly Phishing account on the next scheduled sync.

This article takes you through the steps in synching your Admins to the Phriendly Phishing platform:

    • How to Create a New Enterprise Application in your Microsoft Entra ID
    • How to Assign Groups to the created Enterprise Application
    • How to Configure the Microsoft Entra ID API Admin Synchronisation in Phriendly Phishing

Requirements

  1. It is required to have a Microsoft Entra tenant. You will also be required to have a security group within your tenant that lists all admins that you would like to be added into Phriendly Phishing.
  2. There is a required change that needs to be done by Phriendly Phishing. Please contact Support and mention that you want to synchronise Platform Admins via API. If this is not done, you will encounter below error message.

     

    APIConnector.png

 

How to Create a New Enterprise Application in Microsoft Entra ID

  1. Sign into Microsoft Azure and select Enterprise applications.
  2. Select New application then Create your own application. AdminAPI2.png
  3. Enter a name for your application and follow per screenshot below adminapi3.png

How to Assign Groups to the created Enterprise Application

  1. In the Overview page of the application, select Users and Groups > Add User / Group. 
    adminapi4.png
  2. Select User and Groups and search the group/s you want to assign. adminapi5.png
  3. Select adminapi6.png

How to Configure Admin Synchronisation in Phriendly Phishing

  1. Log in to your Phriendly Phishing account. Go to Settings adminapi7.png and follow through per the screenshot below. adminapi8.png

  2. Click Log In to Azure button

    adminapi9.png

     

    Reminder

    You need to be assigned as a minimum requirement the Application Administrator role within your Microsoft Entra ID environment

     

  3.  Add the Security Group name/s that you previously assigned in the application and select Save Settings. Follow through below screenshot.  adminapi10.png

     

    Reminder

    If the group name entered in the Phriendly Phishing platform is not an exact match to that in your AD, sync won't be successful.

     

  4. Manually Trigger Sync and the newly synched Admins appears under the notification bell.

adminapi11.png

You have now completed the implementation of Admin Synchronisation using Microsoft Entra ID API.

Related to

Comments

0 comments

Please sign in to leave a comment.