Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3808
Views
0
Helpful
4
Replies

Different filtering profiles with AzureAD

samuel.svarc
Level 1
Level 1

‎06-08-2020 11:36 AM

Have a client currently on Cisco Umbrella that would like to setup different filtering profiles for different users.

 

I see that this is possible using AD.

 

Is it possible using AzureAD?

 

If yes, then what needs to done? The client doesn't currently have Office365 or an onsite DC. Just a regular computer with multiple user accounts on it.

 

I've tried googling, found a tutorial from Microsoft Azure, but it doesn't seem to correspond to the Cisco Umbrella I'm familiar with.

 

Thanks!

 

 

1 person had this problem
Labels:
0 Helpful
4 Replies 4

opryluts
Cisco Employee
Cisco Employee

‎06-21-2020 01:51 AM

Hi Samuel,

 

Umbrella Active Directory integration required a piece of software to be installed and connected to the domain controller. Azure AD is a SaaS platform and doesn't allow such kind of integration. 

 

However, AzureAD still can be used as an IDP for SAML authentication in Umbrella. Please refer to the MS article https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/cisco-umbrella-tutorial

 

Add Cisco Umbrella KB https://docs.umbrella.com/deployment-umbrella/docs/enable-single-sign-on

 

Please vore for the response if you find it helpful 

0 Helpful

secgauntlet
Level 1
Level 1
In response to opryluts

‎03-17-2023 07:57 AM

Umbrella does not require a piece of software to be installed on either Umbrella or Azure AD for the integration of Umbrella to Azure AD. There are basically to uses a for the integration of Azure AD into Umbrella. The first is the management or Umbrella UI Admin/User access to the console itself. This can include the SSO usage if that is required for console access within an organization. It is a fairly simple SAML assertion between the solutions. 

The second use of integration of Azure AD with Umbrella is to add, delete or modify User information that will register a User to the Umbrella system. This is used to provide further information into the Umbrella logging and ability to control access (NOT to the Umbrella UI Console) as well as reporting within Umbrella.  Here is a YouTube video from Cisco that explains and show the process of integration Cisco DNS Security solution with Microsoft Azure Active Directory. https://www.youtube.com/watch?v=4CIx9MA6oew

0 Helpful

goc
Level 1
Level 1

‎09-13-2021 04:14 AM

Hello Samuel,

I have the same requirement for a customer that only has Azure AD, and I have found this Microsoft tutorial for users and groups provisioning that may help us:

https://docs.microsoft.com/en-us/azure/active-directory/saas-apps/cisco-umbrella-user-management-provisioning-tutorial

I will try to test it.

Regards

0 Helpful

jerry.plagge
Level 1
Level 1
In response to goc

‎01-04-2022 10:13 AM

I may be wrong but I think that AzureAD integration to sync users and groups is only leveraged for the SAML SSO auth into Umbrella?

 

I am not sure if it is meant as a replacement for what the on-prem AD connector does for policy.

0 Helpful
Customers Also Viewed These Support Documents