The objective of this tutorial is to show the integration of Azure and Humanity (ex ShiftPlanning).
The scenario outlined in this tutorial assumes that you already have the following items:

  • A valid Azure subscription
  • A Humanity single sign-on enabled subscription

After completing this tutorial, the Azure AD users you have assigned to Humanity will be able to single sign into the application at your
Humanity company site (service provider initiated sign on), or using the Introduction to the Access Panel.

The scenario outlined in this tutorial consists of the following building blocks:

  1. Enabling the application integration for Humanity
  2. Configuring single sign-on
  3. Configuring user provisioning
  4. Assigning users

IC786612.png

Enabling the application integration for Humanity

The objective of this section is to outline how to enable the application integration for Humanity.

To enable the application integration for Humanity, perform the following steps:

  1. In the Azure classic portal, on the left navigation pane, click Active Directory.
    IC700993.png
  2. From the Directory list, select the directory for which you want to enable directory integration.
  3. To open the applications view, in the directory view, click Applications in the top menu.IC700994.png
  4. Click Add at the bottom of the page.                                                    IC749321.png
  5. On the What do you want to do dialog, click Add an application from the gallery.                                                       IC749322.png
  6. In the search box, type Shiftplanning (not Humanity, as the application on Azure still use our old name).                       IC786613.png
  7. In the results pane, select Shiftplanning, and then click Complete to add the application.                                              IC786614.png                                             

Configuring single sign-on

 

The objective of this section is to outline how to enable users to authenticate to Humanity with their account in Azure AD using federation based on the SAML protocol. 
As part of this procedure, you are required to create a base-64 encoded certificate file. 
If you are not familiar with this procedure, see How to convert a binary certificate into a text file.

To configure single sign-on, perform the following steps:

  1. In the Azure classic portal, on the ShiftPlanning application integration page, click Configure single sign-on to open the Configure Single Sign On dialog.

    IC786615.png
  2. On the How would you like users to sign on to ShiftPlanning page, select Microsoft Azure AD Single Sign-On, and then click Next.                                                                                                                                                             IC786616.png
  3. On the Configure App URL page, in the ShiftPlanning Sign On URL textbox, type your URL using the following pattern “https://company.humanity.com/includes/saml/“, and then click Next.                                                                   IC786617.png
  4. On the Configure single sign-on at ShiftPlanning page, to download your certificate, click Download certificate, and then save the certificate file on your computer.                                                                                                            IC786618.png
  5. In a different web browser window, log into your Humanity company site as a manager.
  6. In the main menu, click Settings (Gear icon).                                                                                                                     DYjT914.png
  7. Under Integration, click Single Sign-On.                                                                                                                           er80sCB.png

      8. In the Single Sign-On section, perform the following steps:                                                                                                   afYSPAk.png

  • Select SAML Enabled.
  • Select Allow Password Login.
  • In the Azure classic portal, on the Configure single sign-on at ShiftPlanning dialog page, copy the Remote Login URL value, and then paste it into the SAML Issuer URL textbox.
  • In the Azure classic portal, on the Configure single sign-on at ShiftPlanning dialog page, copy the Remote Logout URL value, and then paste it into the Remote Logout URL textbox.
  • Create a base-64 encoded file from your downloaded certificate. (For more details, see How to convert a binary certificate into a text file.)
  • Open your base-64 encoded certificate in notepad, copy the content of it into your clipboard, and then paste it to the X.509 Certificate textbox
  • Click Save Settings.

 

       9.   On the Azure classic portal, select the single sign-on configuration confirmation, and then click Complete to close the Configure Single Sign On dialog.

       IC786621.png

 

Configuring user provisioning

 

In order to enable Azure AD users to log into Humanity, they must be provisioned into Humanity. 

 In the case of Humanity, provisioning is a manual task.

 

To provision a user accounts, perform the following steps:

  1. Log in to your Humanity company site as a manager. 

  2. Click Staff option in main menu on left.

        4XdQflC.png

  3. Click Add Employees button.                                                                                                                                              6Iojgsy.png
  4. In the Add Employees section, perform the following steps:                                                                                             yUpZ7po.png             

      a. Type the First NameLast Name and Email of a valid AAD account you want to provision into the related text boxes
      b. Click Save Employees.

Note: You can import users by uploading CSV/XLSX file with user data, or by using CREATE method staff.employee APIs to provision AAD user

To assign users to ShiftPlanning, perform the following steps:
 

  1. In the Azure classic portal, create a test account.
     
  2. On the ShiftPlanning application integration page, click Assign users.                                                                            IC786626.png
  3. Select your test user, click Assign, and then click Yes to confirm your assignment.                                                             IC767830.png

If you want to test your single sign-on settings, open the Access Panel. For more details about the Access Panel, see Introduction to the Access Panel.

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments