Skip to end of metadata
Go to start of metadata

Users are registered in the BiZZdesign Team Server to be able to work together on model packages and projects. The Team Server supports user synchronization and authentication with an external identity provider to enable signing in to the Team Server, and adding storage places in Enterprise Studio. User synchronization and authentication is available for Azure Active Directory and identity providers using SAML 2.0. Active Directory (LDAP) is also supported, but it is strongly advised to use Azure AD or SAML, if possible.


Azure Active Directory

After registration with Azure AD users and groups defined in Azure AD are automatically pushed from Azure AD into the Team Server via user provisioning, and synchronized. Single sign-on can be enabled for users to sign in with their organizational account.

On-premise solution: Configuring user synchronization and authentication with Azure Active Directory

Cloud solution: Configuring Azure AD for hosted Team Server and HoriZZon

Identity providers using the SAML 2.0 protocol

To be able to use SAML 2.0 a new application needs to be registered with the identity provider. After the new application has been created the Team Server can be configured. Users are provisioned just-in-time; they are added as user to the Team Server the moment they first sign in. Group membership is also registered just-in-time; users are added to and removed from groups when they sign in to the Team Server.

On-premise solution: Configuring user synchronization and authentication with a SAML 2.0 based identity provider

Cloud solution: Configuring SAML 2.0 for hosted Team Server and HoriZZon

Active Directory (only on-premise)

Users that must be registered in the Team Server can be imported from Windows Server Active Directory using LDAP into the Team Server. Keeping user data in the Team Server up-to-date can be done by periodically synchronizing the users in the Team Server with Active Directory. Optionally, single sign-on can be enabled for users to sign in with their Windows account.

Configuring user synchronization and authentication with Active Directory