Skip to main content

ALVAO Asset Management Microsoft Multidomain Authentication

Among other methods of user authentication, Alvao offers Microsoft Entra ID user authentication. Users from only a single Microsoft Entra ID tenant (organization) can log into Alvao by default. This module, and the ALVAO Service Desk Microsoft Multidomain Authentication module, allow users from multiple Entra ID tenants (multiple organizations) to log into a single Alvao instance.

This module is designated for ALVAO Asset Management. The ALVAO Service Desk Microsoft Multidomain Authentication module is designated for ALVAO Service Desk. In case of the combination of both products, both modules are necessary.

Configuration

  1. Configure Entra ID authentication for the main Entra ID tenant.

  2. Go to the Microsoft Azure portal - Microsoft Entra ID - App registrations and select the Alvao app.

  3. On the Authentication page, enable the Supported account types - Accounts in any organizational directory (Any Microsoft Entra ID tenant - Multitenant) option.

  4. On the Administration - Settings - Microsoft Entra ID page, use the Add tenant command to add all additional Entra ID tenants one by one according to their Directory (tenant) ID value.

  5. Configure user provisioning for each additional Entra ID tenant.

warning

For versions 25.1 and 25.2: When Alvao is configured to authenticate users from more than one Entra ID tenant, only registered users can log in. No guest users from any Entra ID tenant will be able to log into Alvao.