Auto-Provision by Entra Group

First, sign in to the Microsoft Entra admin center and navigate to Enterprise Applications under Applications. If you don’t already have one, create a new application. Once created, assign the required API permissions: User.Read.All and Group.Read.All by going to Permissions under Security.

Be sure to copy and securely store the client secret value immediately after creating it, as it cannot be viewed again once you leave the page.

Next, open the WorkSpaces Manager console and go to Configuration > Settings > Enterprise, then scroll down to the Microsoft Graph (Entra) Settings section. Enable Microsoft Graph and enter the Tenant ID, Client ID, and Secret.

You can find the Tenant ID by navigating to App Registrations under Applications. Click on your application, and you will see the Directory (tenant) ID in the overview section.

Once enabled, an additional switch will become available in an Auto Provision (AP) profile. To access it, go to Configuration > AP Profiles, click on your desired profile, and you’ll see the new switch. This allows you to query the Entra group specified in the profile.

PreviousAuto-Provision by AD Group NextTemporary WorkSpaces

Last updated 1 month ago