Príručka používateľa Zrušiť

Role sync for Education

Vyhľadať

Posledná aktualizácia dňa 10. 5. 2024 | Vzťahuje sa tiež na Creative Cloud for enterprise

Adobe Enterprise & Teams: Príručka pre administráciu
Plánovanie nasadenia
1. Základné pojmy
2. Príručky nasadenia
3. Nasadenie programu Creative Cloud na vzdelávacie účely
Nastavenie organizácie
1. Typy identity | Prehľad
2. Nastavenie identity | Prehľad
3. Nastavenie organizácie pomocou Enterprise ID
4. Nastavenie federácie a synchronizácie Azure AD
5. Nastavenie služby Google Federation a synchronizácia
6. Nastavenie služby Microsoft ADFS pre organizáciu
7. Nastavenie organizácie pre okresné portály a LMS
8. Nastavenie organizácie pre iných poskytovateľov identity
9. Časté otázky o jednotnom prihlásení a riešenie problémov
Správa nastavenia organizácie
Správa používateľov
Správa produktov a nárokov
1. Správa produktov a profilov produktov
2. Správa zdieľaných licencií zariadení
Začíname s konzolou Global Admin Console
Správa úložiska zdrojov
1. Úložisko
2. Migrácia zdrojov
3. Opätovné získanie zdrojov od používateľa
4. Migrácia študentských zdrojov | Iba oblasť vzdelávania
  1. Automatická migrácia študentských zdrojov
  2. Migrácia vašich zdrojov
Správa služieb
1. Adobe Stock
2. Vlastné písma
3. Adobe Asset Link
4. Adobe Acrobat Sign
5. Creative Cloud pre podniky – bezplatné členstvo
  1. Prehľad
Nasadenie aplikácií a aktualizácií
1. Prehľad
2. Vytvorenie balíkov
  1. Balenie aplikácií cez konzolu Admin Console
  2. Vytvorenie licenčných balíky pre menovaného používateľa
  3. Spravovať vopred vygenerované balíky
    1. Spravovať šablóny Adobe
    2. Spravovať balíčky pre jednu aplikáciu
  4. Správa balíkov
  5. Správa licencií zariadení
  6. Licencovanie sériových čísel
3. Prispôsobenie balíčkov
  1. Prispôsobenie počítačovej aplikácie Creative Cloud
  2. Zahrnutie rozšírení do balíka
4. Nasadenie balíkov
5. Správa aktualizácií
  1. Správa zmien pre podnikových a tímových zákazníkov Adobe
  2. Nasadenie aktualizácií
6. Nástroj na nastavenie servera Adobe Update (AUSST)
7. Adobe Remote Update Manager (RUM)
  1. Poznámky k vydaniu
  2. Použitie nástroja Adobe Remote Update Manager
8. Riešenie problémov
  1. Riešenie problémov s inštaláciou a odinštalovaním aplikácií Creative Cloud
  2. Dopytovanie klientskych počítačov, aby skontrolovali, či je balík nasadený
Správa tímových kont
Obnovenie
1. Členstvo v službe Teams: obnovenia
2. Spoločnosť s plánom VIP: Obnovenie licencií a dodržiavanie zmluvných podmienok
Správa zmlúv
Prehľady a protokoly
Získať pomoc

Overview

To enable tailored experiences, enhance security, and ensure compliance, admins now can add educator and student tags to users in the Adobe Admin Console for existing Azure syncs and new Azure setups. After you have set up an Azure sync, you can add an attribute mapping to indicate which users are educators and which are students.

In the future, these educator and student tags will allow Adobe to display tailored experiences to educators and students based on their role. For example, educators will be able to set up classrooms of their students and monitor progress on assignments, see lesson plans that are hidden from students, and more. To unlock these future educator-specific developments, please follow the steps below.

Prerequisites

Microsoft Azure AD is set up in your institution.
A distinct way to Identify Students and Educators (for example, teachers have JobTitle attribute filled out in Azure; students have unique email domain.)
Microsoft Azure Sync already set up to sync users in the Adobe Admin Console. Learn how to setup Azure sync.

Steps to perform role sync

Sign into Azure AD with an Admin account.
Navigate to Enterprise Applications under Azure Active Directory.
Select the Adobe Identity Management app where you’ve configured Auto provisioning.
Select Provisioning.
Navigate to Edit Attribute Mapping.
Under the Mapping section, select Provision Azure Active Directory Users.
Then select Add New Mapping.

Apply Role mapping

To enable Adobe Express to provide a tailored experience for Educators and students we need to share role information from Azure AD to Adobe through the process of an attribute mapping.

A Direct Mapping of role from Azure AD to Adobe can only be used if you have an attribute that is Educator or Student for all users.

Expression mapping enables the use of a rule to generate the output of Educator or Student. In the following section we have provided examples with comments for common use cases in education.

A Direct Mapping of role from Azure AD to Adobe can only be used if all synced users in Azure AD have an attribute with a static value of either Educator or Student for all users. For example, if the Azure AD directly to the target attribute.

Select Direct Mapping Type.
Set Source attribute.
Set Target attribute.
Click OK.
Save mapping.
Select Save.

If an attribute such as employeeType is used to identify teachers versus students the following is an example, expression that can be used to set role based on a list of values.

Select Expression Mapping type.

Build Expression.

//The following expression defaults to the Student role and assigns the Educator role when employeeType has a value of Faculty, Staff or Coach.

Switch([employeeType], student, <teachers_employeeType>, Educator)

Ex: employeeType = [Faculty, Staff, Coach...]

Switch([employeeType], Student, Faculty, Educator, Staff, Educator, Coach, Educator)

Use Expression Builder to test attribute mapping.
Set Target attribute.
Click OK.
Save mapping.
Select Save.

If you distinguish role by email domain, an expression can be used to send the Educator role attribute based on @example.org. And send Student based on @student.example.org.

Select Expression Mapping type.

Build Expression.

// Users with an email address on the students domain will be marked as students. Users with email on the teachers domain will be marked as educators. Every other user will not be marked at all

Switch(Item(Split([mail], "@"), 2), "", "<students_domain>", 
"Student", "<teachers_domain>", "Educator")

Ex: student_domain = student.example.org
Teacher_domain = example.org

Switch(Item(Split([mail], “@”), 2), “”,“student.example.org”, “Student”, “example.org”, “Educator”)

Use Expression Builder to test attribute mapping.
Set Target attribute.
Click OK.
Save mapping.
Select Save.

If you distinguish role by UPN, an expression can be used to send the Educator role attribute based on @example.org. And Student based on @student.example.org.

Select Expression Mapping type.

Build Expression.

// UPN - Users who have a UPN based on the teachers_domain will be marked as teachers.  Every other user will be marked as student

Switch(Item(Split([userPrincipalName], "@"), 2), "student", "<teachers_domain>", "teacher")

Ex: student_domain = student.example.org
Teacher_domain = example.org

Switch(Item(Split([userPrincipalName], "@"), 2),"student", "example.org", "Educator")

Use Expression Builder to test attribute mapping.
Set Target attribute.
Click OK.
Save mapping.
Select Save.

If you distinguish role based on an email prefix, such as s_username@students.example.org an expression can be used to send the Student role attribute if s_ is present and Educator if not.

Select Expression Mapping type.

Build Expression.

// email prefix – Users with an “s_” email prefix will be marked as Student. All other users will be marked as Educator.

Ex: Email address = s_johnson@student.example.org

IIF(Left([mail], "2") = "s_", "Student", "Educator")