Skip to main content
arrow-left Back to Docusign.com

Hi all,

We have successfully set up SSO between Azure AD and DocuSign, and have started work on implementing JITP.

We have setup AAD Groups which we would like to use to dynamically assign users to different accounts within DocuSign e.g. Group Dep1 will have the user add to Dep1 account in DocuSign.

We are thinking we could use extension attributes in the AAD group to send the SAML Assertions but have not had much luck.

Hoping that someone has been able to successfully set theirs up in a similar way or can provide some insight to assist us in setting up these dynamic groups to map the accounts.

 

Thank you

Hi ​@NickAllan,

 

Thank you for reaching out to the Docusign Community.  

Just in Time Provisioning is available by default in accounts where SSO is the mandatory log in authentication process, whenever a user attempts to log in for the first time through your Identity Provider a new membership will be created in the organization’s default account if there is no active user related to the credentials used to log in. If you are looking to create users within specific accounts, you may specify the target account ID in the user’s Identity Provider’s parameters in their SAML response. Detailed steps on how to work with Just in Time provisioning can be found, here:

How do I use Just-in-Time Provisioning as a Docusign Administrator?

Feel free to let us know if you need further assistance with this. 

 

Best regards,

Alejandro R. | Docusign Community Moderator  

Please click "Best Answer" below if you find my reply to be a valid solution to your issue!

 

Reply


Code of Conduct

Docusign Community

Code of Conduct