Security: Support to use separate Azure Active Directory (AD) for team members and end customers
We use our organization's Microsoft Office 365 Active Directory (AD) for authentication of our support agents (= team members).
We currently manage end users in the Zendesk build-in store (= Zendesk authentication).
Due to a reorganization, we want to migrate more entities/companies of our organization to the Zendesk platform and now have a requirement that we want to manage all our end users (= all customers and partners) in one Azure AD B2C instead of Zendesk build-in store.
Due to a company policy, end customers must use Azure AD B2C and must be managed completely separately from team members (in our MS Office365 tenant).
Now it seems that our request will fail due to the documented limitation that you can currently only configure one SSO provider for team members and end customers.
Now to our questions:
- Is there currently a workaround so that we can meet our company policy and manage end user in Azure AD B2C and keep team members in our normal Azure AD?
- Are there any plans to support this scenario in the future? If yes, what is the time horizon?
- Is there somewhere a help center article on how to configure Zendesk with Azure AD B2C?
-
Am I right our feature wish has been implemented according to:
https://support.zendesk.com/hc/en-us/articles/4781065063962-Announcing-split-single-sign-on-SSO-for-team-members-and-end-users -
Hey, Josef –
You are correct. This features should allow you to set up two different SSO configurations, and assign one of them to all end users and the other to all agents. I apologize that we missed your original question. We have heard this feedback from a number of our customers, so we're very happy to be rolling it out. If you do not see this feature already, it will be live for all accounts by August 3rd, 2022.
Please sign in to leave a comment.
2 Comments