Digital Workspace
October 30, 2024

How to Create an Org Chart from Azure AD: Sync Azure Active Directory with Sift

by 
Aaron Smith

Syncing Azure Active Directory with Sift: Automatically Create an Updated Org Chart

Keeping your organization’s directory up-to-date can be challenging, especially in large and fast-growing companies. However, with Sift’s Azure Active Directory (AAD)/Microsoft Entra sync feature, you can automatically import user data from your AAD to create an org chart in Sift, saving time and reducing errors.

This guide will walk you through the setup process, from authorizing AAD to configuring sync settings in Sift. Follow these steps to get started, and enjoy the benefits of a streamlined, automated org chart!

What Is Sift’s Azure AD Sync?

Sift’s AAD Sync is a one-way integration that imports user and profile attribute information directly from Azure Active Directory into Sift. This means your AAD data will flow into Sift, while Sift data remains isolated from your AAD data source.

Step 1: Before you get started

Before starting the sync process, ensure you have the following:

  • Azure Admin Account: This account, with the Global Administrator role, is needed to authorize the initial sync. (You can reduce permissions later if necessary.)
  • Populated Azure AD Groups: Set up groups in AAD/Entra with the users you want to sync.
  • Access to Sift Admin Dashboard: Ensure you can access the Sift Admin Dashboard.

Note: You can create a free 14-Day Sift trial to do this

Step 2: Setting Up Your Azure Active Directory Sync

To start, you’ll need to configure your Azure AD sync on the Sift Admin Dashboard.

  1. During the Initial Setup: When you log into Sift, a setup wizard will guide you through the process. You can click start on “Upload your People Data” in the onboarding section to get started or you can also click on “People Data” from the side menu on the left.

  1. Choosing Data Sync Method: select Microsoft Azure Active Directory as your method and click "Next."

Step 3: Authorizing Azure Active Directory

Once you’ve selected Microsoft Azure Active Directory you will then have to authorize it.

  1. Authorize: You’ll then need to click “Authorize” to grant Sift access to read information from your Azure AD domain.

  1. Complete Authentication: You will be taken to the Azure AD portal. Sign in with your designated Azure service administrator account that has the global administrator role for this Azure Active Directory.

Note: You may need to complete an Azure MFA for that service account admin user.

  1. Grant Access: After signing in, grant Sift the necessary permissions by clicking "Yes" to allow it to import users.

Step 4: Selecting Azure AD Groups to Sync

After authorizing Sift to access AAD, you can choose specific groups to sync. Here’s how:

  • Enter Group Names: Start typing the names of the Azure AD groups you’d like to sync. Groups matching your input will appear in an autocomplete dropdown.
  • Select Multiple Groups: Choose multiple groups by typing each group name and selecting it from the list.

Note: If you don’t select any groups, Sift will import all users within your AAD tenant. Selecting groups narrows the import to only those members.

Step 5: Finalizing the Sync Setup

With AAD authorized and groups selected, complete the setup process by creating your mappings and enabling the sync.

  1. Mapping: Ensure that all required data mappings, such as Unique Identifier, First Name, Last Name, and Email, are correctly assigned to Sift fields.

Note: For more information on mapping please visit the help article, Mapping Your Incoming Data

  1. Enable Sync: On the Source Dashboard, click the "Enable Sync" switch to start syncing profiles.

Sync Frequency: Sift syncs with AAD every 60 minutes by default. If needed, you can manually initiate a sync by clicking "Sync Now".

Managing Your Sync

Sift provides several options for managing your sync, including:

Disabling Sync

If you need to pause the sync, turn off the "Enable Sync" switch on the Source Dashboard. Your user data will remain from the last successful sync, so you won’t lose any information or settings.

Debugging Sync Issues

In case of sync failures, try the following troubleshooting steps:

  • Reauthorize Your Source: If the initial Azure admin account is no longer active, reauthorize with a current Azure admin.
  • Check Groups: Ensure all synced groups are still active in AAD.
  • Verify Mappings: Make sure required mappings (Unique Identifier, First Name, Last Name, and Email) are complete for each user.

Need Help? Use the "Chat" button in the Admin Dashboard for further assistance.

Optional: Syncing Profile Photos

To add profile photos to your Sift org chart cards and corresponding profiles, navigate to the Source Settings tab on your Source Dashboard and toggle the Photo Sync setting to "On". This option is perfect for creating a visually rich, user-friendly org chart that helps employees recognize each other.

Conclusion

Syncing Sift with Azure Active Directory streamlines the process of maintaining an accurate, automated org chart. With just a few steps, your org chart will stay current, reflecting changes from AAD regularly. Plus, Sift’s easy management tools give you control over group selection, sync schedules, and troubleshooting.

Start your 14 Day Free Trial and enjoy the benefits of an automatically updated org chart.

Tags:
Digital Workplace
Information Access
Organizational Knowledge
Knowledge Management
Identity