Contact Support Free trial Contact Support
TOGGLE MENU

Features for administrators and supervisors

See more

Assigning Microsoft users to portatour® users for single sign-on

After setting up single sign-on (SSO) with Microsoft once (see Setting up single sign-on (SSO) with Microsoft), assign the Microsoft users to the portatour® users.

Assigning Microsoft users to portatour® users

You have four options for assigning Microsoft users to portatour® users: By means of individual invitation emails, by means of mass invitation emails, by means of manual entry of the Microsoft object IDs or by importing the Microsoft object IDs.

Assignment by invitation email

  1. Go to Workspace Organization and open the menu item Users.
  2. Click on the desired user to open the detailed view of this user.
  3. In the section Log in with SSO with Microsoft, click on Send invitation:
    16548740461212

The user receives an email with an invitation link. This invitation link is valid for 30 days. After clicking on the invitation link, the user logs in to their Microsoft account (see Login via single sign-on (SSO) with Microsoft). After logging in, the assignment is successfully created. You can recognize this if the Microsoft user name (UPN) is also displayed on the user's detail page.

Notes:

  • For security reasons, the email address of the Microsoft user must match that of the portatour® user for the assignment invitation to work. After a successful assignment, the email addresses on both sides can be changed without affecting the assignment.
  • To invalidate an invitation prematurely, click on the recycle bin symbol.
  • To send a new invitation, click on Send new invitation. The original invitation will then become invalid.

Assignment by means of mass invitation emails

  1. Go to Workspace Organization and open the menu item Users.
  2. At the end of the user list, click on Edit all X.
  3. In the Log in with SSO with Microsoft area, click on X users have neither a linked Microsoft account nor an invitation on Send invitations.
    16548772933532

Notes:

  • In the user list, use the selection mode or the extended search to specifically restrict the users affected by this process.
  • The notes for the individual invitation email apply analogously here.

Assignment by entering the Microsoft object ID

For this procedure, you must know the user's Microsoft object ID. As administrator of your Microsoft client, you will find this in the user management of the Microsoft Entra Admin Center.

  1. Go to Workspace Organization and open the menu item Users.
  2. Click on the desired user to open the detailed view of this user.
  3. In the section Log in with SSO with Microsoft, click on Enter Microsoft object ID.
  4. Enter the Microsoft object ID of the user - preferably using Copy & Paste from the Microsoft Entra Admin Center.
  5. Click Save.

The user can then immediately log in to portatour® using SSO.

Optionally, click on Send access link so that the user receives the link to the SSO login page of portatour® via email (see Login via single sign-on (SSO) with Microsoft). You recognize a successful login by the user if the Microsoft user name (UPN) is also displayed on the user's detail page.

Notes:

  • Proceed carefully. When entering the Microsoft object ID, there is no check whether the user exists in your Microsoft client or whether it is the desired user.
  • In this case, it is not necessary for the email addresses of the user in portatour® and Microsoft to match.

Assignment by importing the Microsoft object IDs

If you have the Microsoft object IDs of your users as a file, use the user import to assign them to existing or new users.

In the import wizard, assign the corresponding column in your file to the SSO Microsoft object IDs field and then carry out the import in the usual way.

Notes:

  • The notes for entering the Microsoft object ID apply analogously here.
  • If the SSO Microsoft object IDs field is missing, you have not yet set up Microsoft as an SSO provider in portatour®.
  • The field name also contains the name of the SSO provider you have specified.
  • If you want to assign several Microsoft users to one portatour® user, separate the object IDs with a semicolon ';'.

Further information

Was this article helpful?
Thank you for your feedback.
Thank you for your feedback.
Do you still have questions? How to get support
Return to top