Has anyone out there configured a Cherwell SaaS instance to import users from Azure AD?
If so, are there any caveats or gotchas to be aware of?
Any help or notes would be greatly appreciated!
I was able to find an enhancement request in our old system to add support for Azure AD in directory services, but since we have switched over to Ideascale it doesnt look like it has been submitted there yet. Unfortunately I dont have an answer for you but I would suggest logging this as an enhancement within Ideascale to be built into Cherwell directory services. Hopefully this reply will also bump your question to the top of the list for more visibility from other customers. You can log into Ideascale here: https://cherwell.ideascale.com Thanks!
Is there any update on this? Cherwell as a SaaS really need to leverage Azure AD. It's disappointing that it can't be done. We still have to rely on Trusted Agent where we are trying to migrate everything to Cloud.
Update: I spoke to one of our senior analysts and this is what he told me about Azure AD Sync:"LDAP imports from Azure can be accomplished with the Azure DS Connector. Now I don't know if you can get the connector without going to the Azure DS model and services. Need to connect with Microsoft on this to verify if you can get the connector with out enrolling in the Azure DS services"
Hope that helps!
Hi Nicole, I wonder if there is a hyperlink or piece of documentation from which we could learn how to setup the Azure DS Connector that you mention. I have found the following:
Here we find how we setup Azure Active Directory as an Identity Provider in a SAML Setup that Cherwell could query using SAML SSO. But what we essentially want for the time being is importing user objects from an Azure Directory Service into the Customer Business Object in Cherwell. This is not what they mean here.
What I have also found is the following:
Here we learn how to configure Azure to import from Cherwell Business Objects using REST API - interesting but not what we are after, we want the opposite direction, Cherwell is supposed to import user data into the Customer table...
Is it possible to put it a bit more precisely what needs to be done to have Azure User Objects imported into Cherwell? I know that there is a way using Trusted Agents and a legacy Domain Controller which is the backend of an Azure synched Global Catalogue but we do not want to talk to the legacy box but to Azure Directory Services directly.
Could you cast some more light on this issue?
Thank you so much!
Hi Sonke! I looked through our available technical documentation as well as our knowledge (KCS) articles and I didnt get any hits on additional information from a Cherwell source. Unfortunately this is not something I am familiar with and the tech that gave me that last answer has moved on from Cherwell. This may be worth a call into support to see if they have any additional information for you? Thanks!