I'm pretty sure that there isn't currently a way to connect AB directly to Azure Active Directory, but that workarounds exist like syncing Azure AD with on prem AD and using that to accomplish certain goals. Can someone confirm that this is accurate?
‎Aug 25, 2023 01:19 PM
In general, there is no direct connection between App Broker and Azure AD for the things labeled as "Active Directory" in the admin UI (e.g. AD OU, group, or property for visibility conditions, question conditions, approval conditions, etc.). As you state, the workaround would be to sync Azure AD with on-prem AD and use the connection to on-prem AD. If you are using Intune, there is a connection to Azure AD for syncing user/device information, but that's the only thing I'm aware of that talks to Azure AD.
‎Aug 25, 2023 01:27 PM
In general, there is no direct connection between App Broker and Azure AD for the things labeled as "Active Directory" in the admin UI (e.g. AD OU, group, or property for visibility conditions, question conditions, approval conditions, etc.). As you state, the workaround would be to sync Azure AD with on-prem AD and use the connection to on-prem AD. If you are using Intune, there is a connection to Azure AD for syncing user/device information, but that's the only thing I'm aware of that talks to Azure AD.
‎Aug 25, 2023 01:27 PM
That's correct. The Intune integration is the only thing that connects to Azure AD Directly. Generally, if somebody needs to do something in Azure, they will create a PowerShell script to do so, and then invoke the PowerShell as a command action.
‎Aug 25, 2023 03:34 PM