BMP Provisioning with Identity Connector for Azure Active Directory

Alicia Allen Updated by Alicia Allen

Overview

Brivo's Identity Connector integration with Azure AD allows users to provision Brivo Mobile Passes to users synced to Brivo Access via Azure.

Prerequisites

Before you begin, ensure that you have the following required elements:

  • An active Azure account
  • An active Brivo Access account with an Identity Connector subscription.
  • A configured Azure integration in Brivo Access.
  • Brivo Mobile Passes available to issue.

To issue Brivo Mobile Passes from Azure, a custom attribute will need to be added to be passed to Brivo with each user.

The attribute will be a boolean(true or false) value. If the value is true, a new Brivo Mobile Pass will be issued to the user if they do not have an existing Brivo Mobile Pass. If the value is false, an existing pass will be revoked. If the value is null no change will be made.

NOTE: In order for a user to be issued a pass, the Brivo account must have available passes.

Create the Brivo Mobile Pass attribute

  1. Create a new BrivoMobilePass attribute the same way you would add any other custom attribute to Azure Active Directory. Make sure this attribute is set to a boolean value. Consult your Azure Active Directory guide if you need assistance with this step.

Edit the attribute mapping

  1. Navigate to https://portal.azure.com/?Microsoft_AAD_Connect_Provisioning_forceSchemaEditorEnabled=true#home.

NOTE: If you skip step 1, you will not be able to move past step 6.

  1. Click on the Microsoft Entra ID link, then on the Enterprise Applications link.
  2. Under All Applications, search for your Brivo application and select it.
  1. Click on Provisioning and then Edit attribute mappings.
  1. Under Mappings, select Provision Azure Active Directory Users.
  1. Check the Show advanced options checkbox, then click the Edit attribute list for Brivo Onair link.

NOTE: If you don't see this link, go to the URL in step 1 and navigate back to the Attribute Mapping page.

  1. Enter brivoMobilePass in the name column.

NOTE: It is required that the spacing and capitalization of brivoMobilePass match exactly.

  1. Change the Type to boolean.
  1. Save changes.

Map the Brivo Mobile Pass Attribute

  1. On the Attribute Mapping page, click on Add New Mapping.
  1. Select your BrivoMobilePass attribute for the Source Attribute.

NOTE: You can also use any boolean attribute if you did not create a BrivoMobilePass attribute.

  1. Select the brivoMobilePass attribute for the Target Attribute.
  1. Click OK and save changes.

When the Brivo Mobile Pass value is set to true, if provisioned users don't already have an assigned Brivo Mobile Pass, one will be issued. If the Brivo Mobile Pass value is set to false, assigned passes will be revoked from users upon the next sync.

How did we do?

Identity Connector for Azure Active Directory

Custom Field Mapping with Identity Connector for Azure Active Directory

Contact