Connect Entra (Azure) to Venn for Identity and User Management

In order to enable seamless user and permissions management in Venn, Venn offers integrations with third-party Identity Providers (IdPs), including Microsoft Entra ID (formerly Azure Active Directory).

If you configure Entra as your Venn Identity Management solution, your users will be created, modified, and deleted in Entra and synced to Venn. Additionally, users' Venn login information will be managed through Entra.

Learn how to manage Venn user access with Entra as your IdP.

Venn supports unidirectional syncing from Entra to Venn, meaning that changes you make in Entra will be reflected in Venn. Bidirectional syncing is not supported, meaning that changes you make to users in Venn will not update Entra.

Set up Entra as Your IdP

You must have Admin access to Entra in order to set it up as your Venn IdP.

If you already have Identity Management configured in Venn, changing your identity provider will result in all users being locked out of Venn, including Company Managers. For that reason, changes should only be made in collaboration with the Venn team or a Venn partner.

To set up Entra as your IDP:

  1. The Venn team or a Venn partner will guide you through the process of changing your Identity Provider to Entra in Venn's Company Admin. This will add the Workplace enterprise app in Entra for your organization. 
  2. Log in to Entra with an account that has administrator permissions.
  3. Click Accept on the Permissions requested screen to create a Workplace enterprise app for your organization in Entra, provision access to the Workplace app for users and groups in Entra, and enable Entra SSO for Workplace.

    Entra_Permissions Requested.png

  4. Navigate to Identity > Applications > Enterprise applications > All applications.
  5. Locate and click on the Workplace enterprise app in the application list.

    Entra_Workplace App.png

  6. In the menu at left, click Provisioning.

    Entra_Workplace App > Provisioning.png

  7. Click Edit attribute mappings.

    Entra_Workplace App_Provisioning > Edit Attribute Mappings.png

  8. Click Provision Microsoft Entra ID Users.

    Entra_Workplace App_Provisioning_Edit Attribute Mappings > Provision Microsoft Entra ID Users.png

  9. Update the Attribute Mappings so that your screen matches the screenshot below.

    Entra_Workplace App_Provisioning_Edit Attribute Mappings_Provision Microsoft Entra ID Users.jpg

    Typically, you will need to make the following changes:

    1. Click Add New Mapping. Create an attribute that maps the source attribute immutableId to the target attribute nickName, leaving all other values as default so that the mapping matches the screenshot below.

      Entra_Workplace App_Provisioning_Edit Attribute Mappings_Provision Microsoft Entra ID Users_nickName mapping.png

    2. Edit the externalid attribute. Change the source attribute to objectID so that the mapping matches the screenshot below.

      Entra_Workplace App_Provisioning_Edit Attribute Mappings_Provision Microsoft Entra ID Users_externalid mapping.png

    3. Remove the following attributes:
      • displayName
      • Title
      • preferredLanguage
      • Name.formatted
      • All address fields
      • All phoneNumber fields except mobile
      • All three urn:ietf:params:scim:schemas:extension:enterprise2.0 fields

Manage User Access to Venn when Entra is Your IdP

Follow the steps in this article to manage user access to Venn once you have set up Entra as your IdP.

Was this article helpful?