The section for some frequently asked questions related to the Connector's features, integration scenarios, and conditions.
The Azure AD Connector can only provide user management for the primary Admin Console in a primary-trustee Admin Console relationship. Any trustee Admin Consoles can take advantage of single sign-on with the federated directory, but must use a separate form of user management (such as CSV manual upload, User Sync Tool, or User Management API.)
The sync runs every 15 minutes, making updates to the Admin Console based on the changes identified in the aligned Azure AD security groups. The Connector landing page has a Trigger Sync feature available in the Admin Console, that allows a System Admin to force a sync at any time between the 15-minute intervals. However, you may experience a slight delay when you force Trigger Sync if you use on-premise Active Directory.
Microsoft Azure Active Directory synced groups become available for provisioning to easily manage users and entitlements for your Adobe apps and services. Active Directory synced groups also become part of your Organization’s address book. Then, these synced users are available as private sharing recipients when other users share assets organization-owned assets. Currently, group sharing is only available in Adobe Xd.
The section covers some questions asked by users who want to use the Connector and are already using Azure as their IdP.
The Azure AD Connector requires that the domains and directories to be synced from Azure AD are not already established in the Admin Console with federation. If directory users do exist, you need to permanently remove associated directory users, domains, and directories before the Connector implementation.
To know more, see set up SSO with Azure AD Connector.