Azure Active Directory as Identity Provider

We need to configure AAD as an Identity Provider to retrieve USERS accessing the SPP.

What is the best way to proceed? Do we also have to configure Starling Connect in order to configure AAD in the Identity Provider section? What type of selection should we make? Active Directory or External Federation type?
Now in the customer's environment only EXTERNAL FEDERATION is configured to have the MFA but we must also configure it as an Identity Provider.

Also, is it necessary a specific license to join to Starling Connect?

I hope to be clear.

Thank you very much for your help

Parents Reply Children
  • ok Tawfiq thank you.

    So, it is not necessary to enroll in Starling (Starling connect) to set it up as an Identity provider or even to see the AAD as an asset on which to make all discoveries (of assets and accounts)?

  • The SCIM provider option can be used to provision Users and User Groups from Entra ID to SPP for example.

    Asset and Account Discovery is a separate feature:

    (Managing AAD Account passwords) this requires the use of the Azure AD asset to browse and import AAD Accounts - The AAD Asset will still need to use the Starling Connect registered connector. This is already available in SPP

    Azure AD (Asset Discovery) is not yet implemented but we do have a feature pending for this functionality.

    Thanks!