User synchronization from Entra ID with Microsoft Graph

Microsoft has renamed Azure Active Directory (Azure AD) to Microsoft Entra ID for the following reasons: (1) to communicate the multicloud, multiplatform functionality of the products, (2) to alleviate confusion with Windows Server Active Directory, and (3) to unify the Microsoft Entra product family.

https://learn.microsoft.com/en-us/azure/active-directory/fundamentals/new-name

Entra ID with Microsoft Graph is a service accessed from the Microsoft Azure Portal, where it has to be enabled and configured.

Once the Entra ID connection is established, go to MyQ, Settings, User Synchronization.

1. Click Add, and then click Add Entra ID source.

   

2. In the Entra ID Synchronization properties panel to the right, in the General tab, if you have already set up an Entra ID connection, the Entra ID server is already in the Authentication Server field. Otherwise, click Add new and set up an Entra ID connection.

   

3. Click Save.

4. In the Users tab:

   

   1. You can map user information from Entra ID to the credentials in MyQ.

   2. If you plan to authenticate users towards Azure using Active Directory credentials and use the Microsoft single sign-on option, select the Use as authentication server option and click Save.

5. In the Groups tab, you can select what Active Directory groups you want to remove from synchronization using the Ignore groups and Ignore groups containing string fields.

   

Users can be now synchronized by selecting your Entra ID source from the list and clicking Synchronize now.

Limitations

• Only one instance of an Entra ID authentication server and Entra ID synchronization source can be created in MyQ. This means that you can currently automatically synchronize users only from one Entra ID tenant at a time.