Azure Active Directory Sync

This plugin provides a macro to synchronize your Azure Active Directory users to DSS

This DSS plugin completes your SSO setting by offering some degree of synchronization between selected groups of Azure Active Directory users and the DSS user list.

Plugin information

Version 1.0.1
Author Dataiku
Released 2020-05-01
Last updated 2020-05-01
License Apache Software License
Source code Github
Reporting issues Github

How to set up

  1. Once the plugin is installed, go to App > Plugins > Installed > Azure Active Directory Sync > Settings.
  2. Create an authentication preset. There are two possible types of presets:
    • AAD Authentication
    • AAD OAuth settings

How to use

  1. In a DSS project, create a table containing the following columns:
    • dss_group_name
    • aad_group_name,
    • dss_profile
  2. For each row, give the name of the group on AAD, its equivalent group name on DSS, and the user profile you which to associate to this group. The profile can take the following values: DATA_SCIENTIST, DATA_ANALYST, EXPLORER or READER
  3. A second dataset can be created for logging purpose. This dataset should contain the following columns
    • date
    • user
    • type
    • message
  4. In the DSS project containing the group dataset, go to the macro menu and select Synchronize Azure AD Users with DSS. Select the Azure AD connection created in step 2 of the set up phase,  and point Group dataset and Save logging into toward the correct datasets.
  5. First make sure Simulate is selected, and press Run Macro. A list of the operation to be performed should appear.
  6. Once you are happy with the synchronization operation to be performed, unselect Simulate and run the macro.

Limitations

Please note that:

  • Users created on the DSS side will have DSS handles based on their Azure Active Directory email address, with @ and # being replaced by an underscore character. For instance, [email protected] will havejohn.doe_mycorp.com handle on DSS.
  • Local users already created on DSS will be untouched by the synchronization
  • Any change on users performed on the DSS side will not be reflected on Azure AD. The AD remains the source of truth for synchronized users.

 

Get the Dataiku Data Sheet

Learn everything you ever wanted to know about Dataiku (but were afraid to ask), including detailed specifications on features and integrations.

Get the data sheet