Greetings, I have a few questions / looking for advice regarding running multiple Azure AD configurations at the same time.
We are working towards migrating our Office Suite. With that, we will need to set up a new Azure AD config. Epicor’s instructions are relatively simple but leave me with questions. We are cloud based.
-Has anyone done this before? If so, did you encounter any challenges?
-What happens when you have both SSO options active at the same time?
-How will Epicor know which to authenticate with? Or will the user have to choose?
-We will not be changing old email addresses; will this cause a problem with the new SSO?
-Which Schema do you recommend using - currently use: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
-Will there be a need to update sysconfig file after the new Directory ID is created?
-Any advice for testing the functionality before pushing its release?
Interesting problem. Have you tried doing any of this in Pilot?
-When you say you are not updating your email addresses, are you talking about the email field in user account security or about the external identity? You can keep email account the same and update External Identity and it should work fine.
-I am not positive, but I would think that if you have multiple Azure Active Directory settings then there will be multiple dropdowns at the menu startup on the web. Not sure how it would work on the application with the sysconfig.
Again, I would try doing this in Pilot first so you can see the results for yourself.
Thanks for clarifying on the emails. I meant that we are not changing our current user’s email address. I was unsure if I needed to make them an external identity in the new Directory ID or how that works.
We wanted to run both at the same time as we gain new users who will be pointed to and setup using the new Directory ID while the original users will continue to use the existing Directory ID until our full migration. Which then, those users will be switched over to the new Directory ID.
I am mainly looking for advice on how this should be setup on the Directory ID level and User level for existing Users on the original Directory ID.
I would imagine you have a dropdown list like the one I have listed below for the web. The user would then just select either the old directory if they are using the existing Directory or the new one for new users. Perhaps support would know if you can multiple Azure Directories for the application but I am not sure. I would them imagine that the external ID would then link to whichever Directory the user selects.
