Export (0) Print
Expand All

Tutorial: Azure Active Directory integration with Dropbox for Business

Published: November 21, 2013

Updated: August 25, 2011

Applies To: Azure

TipTip
For feedback, click here.

The objective of this tutorial is to show the integration of Azure and Dropbox for Business.
The scenario outlined in this tutorial assumes that you already have the following items:

  • A valid Azure subscription

  • A test tenant in Dropbox for Business

The scenario outlined in this tutorial consists of the following building blocks:

  1. Enabling the application integration for Dropbox for Business

  2. Configuring single sign-on

  3. Configuring user provisioning

  4. Assigning users

Configuration

The objective of this section is to outline how to enable the application integration for Dropbox for Business.

  1. In the Azure Management Portal, on the left navigation pane, click Active Directory.

    Active Directory
  2. From the Directory list, select the directory for which you want to enable directory integration.

  3. To open the applications view, in the directory view, click Applications in the top menu.

    Applications
  4. Click Add at the bottom of the page.

    Add application
  5. On the What do you want to do dialog, click Add an application from the gallery.

    Add an application from gallerry
  6. In the search box, type Dropbox for Business.

    DropBox for Business
  7. In the results pane, select Dropbox for Business, and then click Complete to add the application.

    DropBox for Business

The objective of this section is to outline how to enable users to authenticate to Dropbox for Business with their account in Azure AD using federation based on the SAML protocol.
As part of this procedure, you are required to upload a base-64 encoded certificate to your Dropbox for Business tenant.
If you are not familiar with this procedure, see How to convert a binary certificate into a text file.

  1. In the Azure AD portal, on the Dropbox for Business application integration page, click Configure single sign-on to open the Configure Single Sign On dialog.

    Configure single sign-on
  2. On the How would you like users to sign on to Dropbox for Business Configure App URL page, select Windows Azure AD Single Sign-On, and then click Next.

    Cofigure single sign-on
  3. On the Configure App URL page, perform the following steps, and then click Next.

    1. Login to your Dropbox for business tenant

      Dropbox Sign in

    2. In the navigation pane on the left side, click Admin Console.

      Admin Console

    3. On the Admin Console, click Authentication in the left navigation pane.

      Navigation bar

    4. In the Single sign-on section, select Enable single sign-on, and then click More to expand this section.

      More

    5. Copy the URL next to Users can sign in by entering their email address or they can go directly to

      Authentication
    6. On the Windows Azure portal, in the DropBox for business sign in URL textbox, paste the URL.

      Configure app URL

  4. On the Configure single sign-on at Dropbox for Business page, click Download certificate, and then save the certificate file on your computer.

    Download certificate
  5. On your Dropbox for Business tenant, in the Single sign-on section of the Authentication page, perform the following steps:

    Single sign-on
    1. Click Required.

    2. In the Azure portal, on the Configure single sign-on at Dropbox for Business dialog page, copy the Sign-in page URL value, and then paste it into the Sign in URL textbox.

    3. Create a Base-64 encoded file from your downloaded certificate.

    4. Click Choose certificate, and then browse to your base-64 encoded certificate file.

    5. Click Save changes to complete the configuration on your DropBox for Business tenant.

  6. On the Azure AD portal, select the single sign-on configuration confirmation, and then click Complete to close the Configure Single Sign On dialog.

    Configure single sign-on

The objective of this section is to outline how to enable user provisioning of Active Directory user accounts to Dropbox for Business.

  1. In the Azure Management Portal, on the Dropbox for Business application integration page, click Configure user provisioning to open the Configure User Provisioning dialog.

  2. On the Enable user provisioning to DropBox for Business page, click Enable user provisioning to open the Sign in to Dropbox to link with Windows Azure AD dialog.

    Configure user provisioning

  3. On the Sign in to Dropbox to link with Windows Azure AD dialog, sign in to your Dropbox for Business tenant:

    Sign in to Dropbox

  4. Click Allow to grant Windows Azure AD to access to Dropbox.

    Enable access
  5. To finish the configuration, click the Complete button.

    Configure user provisioning

To test your configuration, you need to grant the Azure AD users you want to allow using your application access to it by assigning them.

  1. In the Azure AD portal, create a test account.

  2. On the Dropbox for Business application integration page, click Assign users.

    Assign users

  3. Select your test user, click Assign, and then click Yes to confirm your assignment.

    Yes

You should now wait for 10 minutes and verify that the account has been synchronized to Dropbox for Business.

As a first verification step, you can check the provisioning status, by clicking Dashboard in the D on the Dropbox for Business application integration page on the Azure Management Portal.

Dashboard

A successfully completed user provisioning cycle is indicated by a related status:

Integration status

In your Dropbox for Business tenant, successfully provisioned users are indicated in form of invitations.

Members

If you want to test your single sign-on settings, open the Access Panel.

For more details about the Access Panel, see Introduction to the Access Panel.

See Also

Was this page helpful?
(1500 characters remaining)
Thank you for your feedback
Show:
© 2015 Microsoft