A Runbook to sync Azure AD Group with Adobe using a PowerShell Module framework (AdobeUM) for communicating with Adobe's User Management API
General Usage Instructions
- Create a service account and link it to your User Management binding. (Do this at Adobe's Console)
- Create a PKI certificate. You can create a self signed one using the provided Import-PFXCert command
- Export the PFX and a public certificate from your generated certificate.
- Upload the public cert to the account you created in step 1.
- Upload the private cert to the Automation Account that will run this runbook as a Certicate Asset
- Using the information adobe gave you in step 1, add Variable assets to the Automation Account
- APIKey
- OrganizationID
- ClientSecret
- TechnicalAccountID
- TechnicalAccountEmail
- Create a RunAsAccount for the Automation Account and Give to access to the Read Directory Data using the Windows Azure AD API
- AzureConnectionName - A string containing the name of the Service Principal Connection to use in the Runbook
- AdobeGroup - A string containing the name of the Adobe Group to Sync Federated Users from an Azure AD Group
- ADGroup - A string containing the name of the Azure AD to Sync Federated Users to an Adobe Group
- Azure Tenant
- Azure Automation Account
- AzureAD Module
- AdobeUM.AzureAD Module
Github for version control.
- Paul Towler - Initial work - AdobeUMRunbook
See also the list of contributors who participated in this project.