Configure an Azure Organizational Chart integration connection

In the Connection Manager, you can configure an Azure Organizational Chart integration connection to allow the User Directory to display your Azure Organization Chart. 

Considerations

• Using integrations: The User Directory's Org Chart requires an Azure Organizational Chart integration connection to be configured before it can be used. 

Who can do this?

• Workplace administrators

Configure an Azure Organizational Chart integration connection

You will need the assistance of your IT team's Entra administrator to pull the required information for the integration connection and finish configuring it. 

Required information

The following information is required to configure your Azure Organizational Chart integration connection:

• Tenant ID
• Application ID
• Client secret

You can find all the required information in the following configuration section. 

Configure the enterprise application in Entra 

1. Locate the Tenant ID:
   1. Go to the Microsoft Entra Admin Center and sign in with your administrative credentials.
   2. In the left sidebar, select Overview. 
   3. Copy and securely store the value in the Tenant ID field. 
2. Create a new enterprise application and generate the Application ID:
   1. In the left sidebar, expand Applications and select Enterprise Applications. 
   2. Select + New application. 
   3. Select + Create your own application. 
   4. In the right side panel, enter the following:
      • What's the name of your app?: Enter the application name. For example, Flex Org Chart.
      • What are you looking to do with your application?: Select Integrate any other application you don't find in the gallery.
   5. Select Create.
   6. On the Overview page, copy and securely store the value in Application ID.
3. Generate the client secret:
   1. In the top search bar, search for and select App registrations. 
   2. Locate your application and select the application name to open it. 
   3. In the 2nd left sidebar, under Manage, select Certificates & secrets. 
   4. Select + New client secret. 
   5. In the right side panel, enter the following: 
      • Description: A description like Flex Org Chart.
      • Expires: Select an expiry period of 24 months or Custom to enter a longer expiry.
   6. Select Add. 
   7. On the Certificates & secrets page, immediately copy and securely store the Value field of the new client secret. 
4. Configure authentication redirect URIs and supported account types: 
   1. In the 2nd left sidebar, select Authentication. 
   2. Select + Add a platform.
   3. In the right sidebar, select Web.
   4. In the textbox, enter https://<Your_DW_URL>/microsoft/api/consent, replacing <Your_DW_URL> with your Flex digital workplace URL.
   5.  Select Configure. 
   6. In the Web box, select Add URI. Enter https://<Your_DW_URL>/azure-org-chart/api/code in the new text box, replacing <Your_DW_URL> with your Flex digital workplace URL.
   7. Under Supported account types, select Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant).
   8. Select Save. 
5. Assign a user group that contains all users who should be able to connect to the Azure Organizational Chart:
   1. In the left sidebar, expand Applications, and select Enterprise applications. 
   2. Search for your app by name and select it. 
   3. In the 2nd left sidebar, select Users and groups.
   4. Select Add user/group.
   5. Under Groups, select None Selected. 
   6. Search for a group and select the checkbox beside the group name. 
   7. Choose Select at the bottom of the page.
   8. Choose Assign at the bottom of the page. 

Configure the integration connection in the digital workplace 

1. In your Flex digital workplace, on the Top Bar, select Admin Settings.
2. Under Administration in the left side panel, select Connection Manager.
3. In the Workplace Connections tab, select + Add Connection. 
4. In the Azure Organizational Chart's app box, select + Add Connection.
5. Configure the following fields: 
   • Unique Connection Name: Enter a unique connection name that can easily identify the connection.
   • Connection Description: Enter a unique description of the purpose of the connection.
   • Azure Tenant ID: Enter the value found in Step 1.3 above in the Configure the enterprise application in Entra section. 
   • Application ID: Enter the value found in Step 2.6 above in the Configure the enterprise application in Entra section. 
   • Client Secret: Enter the value found in Step 3.7 above in the Configure the enterprise application in Entra section. 
6. Select Confirm.
7. Select Menu and then Edit. 
8. Under Microsoft Administrator Permission, select Sign In As Microsoft Admin.
9. A new browser window will open with the Microsoft login screen. Your Entra administrator must log in and select Accept to grant Flex permission to use the Microsoft Graph API.
10. Once completed, the browser window will close automatically, returning you to the Flex connection page.
11. At the top of the page, toggle Enable Connection to turn on the Azure Organization Chart connection. The connection is now ready for use in the digital workplace. 

Configure the User Directory's Org Chart

To configure the User Directory's Org Chart, see Configure the User Directory's Org Chart.