Importing entities from Microsoft Entra ID - Card Synchronization 4.0.0

Synergis™ Card Synchronization Plugin Guide 4.0.0
Product
Card Synchronization
Content type
Guides > Plugin and extension guides
Version
4.0
Release
4.0.0
ft:locale
en-US
Last updated
2024-02-28

You can import cardholders, cardholder groups, and credentials from Security Center SaaS edition by connecting to Microsoft Entra ID and importing the entities into Security Center using the Synergis™ Card Synchronization plugin. After the import, changes made in the Entra ID data source can be synchronized in Security Center.

Before you begin

  • Learn about preparing, configuring, and integrating Entra ID into Security Center.
  • Register an app in Entra ID.
  • Get the domain name of the Entra ID tenant, the ID of the Azure app and its secret key.
  • Make sure that the server running the plugin role has internet access and can connect to Microsoft Entra ID.
IMPORTANT: Content in this guide that references information found on third-party websites was accurate at the time of publication, however, this information is subject to change without prior notice from Genetec Inc.

What you should know

Including pictures in the data source increases import time.
NOTE: If you are upgrading from version 3.0 or 3.1 of the Card Synchronization plugin, the data source configuration appears as they were in the previous version. For instructions on how to import these entities, refer to the plugin guide that came with the previous version of the plugin. To see the Data source configuration wizard shown in this topic, you must delete your data sources from the plugin, and then recreate them.

Procedure

  1. From the Config Tool homepage, open the Plugins task.
  2. In the Plugins task, select the Card Synchronization plugin role from the entity browser, and click the Properties tab.
  3. In the Data sources section, click Add data source ().
    The Data source configuration window opens.
  4. From the Data source type list, select Azure Active Directory, and then click Next.
    Selecting Microsoft Entra ID.
  5. Enter the following information to connect to the Entra ID app, and then click Next:
    Tenant name
    Enter the name of the Entra ID tenant where the Entra ID app is registered.
    Client ID
    Enter the Application (client) ID of the Entra ID app that contains the cardholders and credentials that you want to import.
    App key
    Enter the client secret key for the Entra ID app. The key was generated when the app was registered.
    Connect to the Entra ID app by entering Entra ID tenant, application (client), and secret key
    NOTE: If the secret key is no longer available, you must delete the existing app and then create a new app to get a new secret key.
  6. Choose the user groups to import:
    Filter groups
    Set to ON if you only want to import certain cardholder groups, and then select the groups you want to import.
    NOTE: When set to OFF, all cardholder groups are imported.
    Selecting groups in the Azure configuration window.
  7. Select the entity types to import and synchronize with Security Center, and then click Next.
    Cardholders
    Imports the cardholders from the external data source into Security Center.
    Cardholder groups
    Imports the cardholder groups from the external data source into Security Center.
    IMPORTANT: This does not put cardholders into their respective cardholder groups.
    Cardholder group memberships
    Synchronizes the relationship of cardholders and cardholder groups from the external data source.
    IMPORTANT: This option assigns imported cardholders to cardholder groups. If this option is not selected, imported cardholders are not linked to cardholder groups.
    Credentials
    Imports the credentials from the data source into Security Center.
    Choosing what to import and synchronize
  8. Map each external field to a Security Center field by selecting the column name from the corresponding drop-down.
    For an explanation of the external fields, refer to the following topics:
    Configuring the Entra ID Cardholders.
  9. (Optional) Choose one or more fields to be global keys.
  10. (Optional) If the external data contains terms that you want to replace, do the following:
    1. Click Find and replace text using regular expressions ().
    2. Enter the text to find and replace.
      For example, you could look for variations of a country name and replace them with a country code, or replace a native card format name with a supported card format alias.
    3. If necessary, change the order using the up and down arrows.
      The transform expressions are processed in the order specified in the Add transform expressions for field dialog.
    1. Click Save.
    Tip: If required, you can select the row of any expressions that you no longer require, and click delete .
    A script icon () is shown in the Sample value column when the field text is being replaced by a regular expression.
  11. If there are external fields without a corresponding Security Center field, you can create new custom fields and associate them now: Click Manage custom fields, fill in the form, and then click Save.
    Create new custom fields and map them to external fields.
    NOTE: To map an external field that is, turn on the Display all external fields option.
  12. Click Next.
  13. In the Data source name field, enter a name for the data source, and then click Finish.
  14. Click Apply.

Results

After synchronization, the Entra ID source is added to the list of data sources, and the entities are created in Security Center.
Browse