User Onboarding
Users in primedocs are authenticated by the existing Active Directory or Entra ID (formerly Azure Active Directory).
New users are automatically added to the primedocs system as soon as they use primedocs desktop or primedocs web. This involves going through the following steps:
The user is searched for in the primedocs database using the
primarySid
attribute (orobjectId
is taken asprimarySid
in the Azure AD case). If the user does not exist, it is created.After that, the user is synchronized using the User synchronization.
All group information of the user is loaded - this also includes group information of dynamic groups. More information about groups and permissions can be found here: Authorization.
The user is now created in the database and all group information is available to create the default user profile.
The default user profile represents the link between the user and the organization data stored in primedocs. The profile is automatically assigned to the organization for which the user is authorized.
IMPORTANT
The user must be authorized for exactly one organizational unit, or in the case of an organizational tree, only one sub-organization may apply to the user.
Afterwards, the user is created with their standard profile and is able to use primedocs in its entirety.
This process can be automated via the Admin API. Find more details on this page: Admin API
PrimeSoft AG, Bahnhofstrasse 4, 8360 Eschlikon, Switzerland