Set Azure/Office 365 as your External Provider in HR

Please do not complete any of the steps in this section, as we will soon be transitioning to our new identify management solution, IRIS Identity. This transition impacts the actions listed here.

Email us at: productteam-staffologyhr@iris.co.uk to learn more or for further advice.

To set up Azure/Office 365, we recommend reading this page first. This is the official documentation from Microsoft, and we have adapted it to our needs here.

Before starting, check you have:

• Your External Provider's details

• Set up your External Provider

• Sent an Invitation Email to employees.

1. Open the Microsoft Azure portal.

2. Select New registration.

3. Enter a Name – this is the App Name and the Provider Name in Staffology HR, so ensure to use something unique.

4. Select Accounts in this organizational directory only – Single Tenant.

5. Under Redirect URI, enter the HR gateway URL with /<App name> appended.

6. Select Register.

Create and get Client Secret:

7. In the left pane, select Certificates & secrets.

8. Under Client secrets, select New client secret.

9. Add a Description.

10. Select Add.

11. Under Client secrets, copy the value of the client secret (paste it into a doc/text file to keep it safe).

Find the Client ID:

12. In the left pane, select Overview.

13. Copy the value from Application(client) ID (paste it into a doc/text file to keep it safe).

Get the Authority:

14. In the left pane, select Overview.

15. At the top of the screen, select Endpoints.

16. Copy the value from the OpenID Connect meta data document, paste it into a doc/text file, remove the ‘.well-known/openid-configuration’ part of the URL, and store the remaining value. This is the Authority.

Configure the External Provider in HR

The information you need includes:

• Provider Name - must match the App Name in the redirect URI mentioned above.

• Display Name - an info field e.g. Azure.

• Authority - the details you saved previously.

• Client ID – the details you saved previously.

• Client Secret - the details you saved previously

• Logout URL – n/a

• Email as Username – Do not select this.

• Active - select.

1. Add users using the Employee Selector and enter their External IDs.

2. To find their External IDs, in the left pane of the Azure dashboard, select Owners.

3. Select the user you want to configure.

4. Copy the value from Object ID. This is your External ID.

5. In Staffology HR, enter the External ID into the field next to each employee you have selected.

6. Remember to Save when you have finished.

7. When your users Sign in to Staffology HR and selects Return, the Azure login screen opens (providing they are not already logged into Azure).