HELP FILE
Step #5: Add Users/Groups to the Provisioning and Login Apps in Azure AD
Assign your users and/or groups to both the Provisioning and the Login Apps you created in Azure AD.
These steps below are performed in the Azure AD portal.
Return to the Azure AD portal, then select each of the apps you created and add your desired users and/or groups:
To add users and/or groups to this app: | Do this: |
---|---|
Provisioning App for LastPass |
|
Login App for LastPass |
|
You have added your desired users and/or groups to both the Provisioning and Login Apps you created for LastPass.
The setup is complete! You have successfully set up your LastPass Enterprise or LastPass Identity account to use federated login with your Azure Active Directory. All of your newly populated federated users will receive a Welcome email informing them that they can now log in to use LastPass. Please note that your LastPass users must log in using the LastPass web browser extension in order to use federated login for their Azure AD account with LastPass.
What to do next:
- If you have not done so yet, you can deploy the LastPass web browser extension across your organization.
- If desired, you can set up Multifactor Authentication at the Azure AD (Identity Provider) level.
- To see your end users' experience, please see Federated Login Experience for LastPass Enterprise or Identity Users.
- If you need to convert non-federated users to federated users, please see How do I convert an existing LastPass user to a federated (Azure AD or Okta) user?
Previous article:
Step #4: Configure Federated Login Settings for Azure AD in LastPass