Control - Using Azure Active Directory in Workspot

Robert Plamondon -

Introduction

Starting with Workspot Control release 8.5, Workspot supports Azure Active Directory (Azure AD) as an optional method for authenticating your Workspot users’ access to the Workspot Client.

Azure AD is currently supported on the Workspot Windows Client, rel. 3.0 and up, running in kiosk mode. Once Azure AD is enabled in Workspot Control, Azure AD is used for all your kiosk-mode Workspot Clients. Other Workspot Clients are currently unaffected.

About Microsoft Azure AD

Azure AD is Microsoft’s cloud-based directory and identity management service. See Microsoft’s What is Azure Active Directory? for more information.

About Workspot Client Kiosk Mode

Workspot’s kiosk mode makes it easy for multiple users to share the same device to access their individual Workspot resources. Users log into the Workspot Client with their corporate Azure AD credentials and are given access to their Workspot desktops and applications. See Running Windows Workspot Client in Kiosk Mode for more information.

Configuring Workspot for Azure AD

Requirements:

  • Workspot’s Azure AD support an optional feature. To make it available for your deployment, contact your Workspot customer service representative.
  • To use Azure AD with Workspot, you need an existing, configured Azure AD subscription for your organization.
  • You need your organization’s Azure AD global administrative credentials to authorize Workspot access to your Azure AD service.
  • You need administrator-level access to your Workspot Control account.
  • Have a Windows system with the latest Windows Workspot Client installed in kiosk mode. See Running Windows Workspot Client in Kiosk Mode.

Procedure

To configure Workspot to use Azure AD:

  1. Log onto Workspot Control as a Workspot Administrator
  2. Navigate to Setup > Configuration.
  3. Find the Azure AD Auth section and click the “Enable” button.

 aad_enable1a.png

  1. A descriptive screen will appear. Read it and press the “Continue” button.

aad_continue2.png

  1. A Microsoft login window will pop up. Enter your Azure AD administrative credentials.

aad_ms_deck1.png

  1. You will be asked to approve Workspot read-only access to your user profiles. Click “Accept.”

aad_ms_permissions1b.png

  1. Azure AD access has been enabled. Workspot Control will now give you the opportunity to log out from the Azure AD administrative account. To sign out, click your account under the “Pick an account” heading.

aad_ms_logout_stack.png

  1. When you return to the Configuration page in Workspot Control, Azure AD Authentication will be shown as “Enabled.”

aad_control_enabled.png 

Testing Your Installation

Test the installation on a system with the Workspot Windows Client, rev. 3.0 or higher, configured in kiosk mode:

  • Exit and restart the Workspot Client to ensure that the Client has the latest configuration.
  • You will be prompted to log in via a Microsoft login screen (similar to the one you used when enabling Azure AD).
  • Log in with valid Azure AD credentials.
  • The Workspot Client shows your desktops and apps.

Event Log Messages

Workspot Control logs the initiation, success, or failure of the Azure AD setup process, as shown in the image below.

aad_events.png

Note: If you close your browser partway through the process, subsequent log messages are not guaranteed.

 

Have more questions? Submit a request

Comments

Powered by Zendesk