Microsoft Azure Active Directory (AD) One-Click Single Sign-On (SSO) Enhancement

This enhancement streamlines the process of setting up the Microsoft Azure Active Directory One-Click Single Sign-on integration by automating the step in the enablement process to add a new claim. Prior to this enhancement, administrators had to manually map the unique identifiers when adding a new claim between Cornerstone OnDemand and Microsoft Azure. With this enhancement, after a token is generated, administrators can select which identifier to use for adding a new claim.

The following mappings are used of Cornerstone OnDemand unique identifiers to their corresponding identifiers in Microsoft Azure:

  • “userid” = “user.employeeid”
  • “username” = “user.userprincipalname”
  • “email” = “user.mail”

How Does this Enhancement Benefit My Organization?

The process of adding a new claim is automated and attribute mappings are standardized.

Implementation

The Microsoft Azure Active Directory One-Click Single Sign-on integration is available for customers to install in Edge Marketplace. This integration is for Cornerstone customers that use Microsoft Azure AD for their identity and access management service. This enhancement to the integration is available by default with the October ’21 Release.