-
Notifications
You must be signed in to change notification settings - Fork 3
Admin Guide
When logged in as an M365 Global Admin, a number of features and configurations are available to administrators.
If you would like to share your address book, you must generate an API Key to provide secure access to your organisation's data.
- Open the app as a Global Admin.
- Click the API Keys tab
- Click the Generate new API Key button
- Provide the name of the organisation you intend to share the key with.
- Provide the App IP Address if you have been given one. Note: By entering an IP address here, you will limit access to your API Key to traffic originating from the app instance with that IP address. This feature is similar to applying a WAF whitelist rule. You can apply additional Azure WAF rules to your instance to further secure your application and data.
- Click Submit. A new API Key will be shown on the table in the API Keys tab.
You can copy and share this API Key along with your External API Endpoint URL to enable another organisation to access your address book.
- Open the app as a Global Admin.
- Click the API Keys tab
- Click the ··· menu icon next to the API Key you wish to edit
- Click the Edit API Key link
- From this screen, you can edit the Organisation Name and the App IP Address settings.
- Click the Save button to publish changes.
- Open the app as a Global Admin.
- Click the API Keys tab
- Click the ··· menu icon next to the API Key you wish to delete
- Click the Delete API Key link
- Click the Confirm button to finalise deleting the API Key.
In order for other app instances to connect and read from your address book, they need to provide an Endpoint URL. You can obtain your app instances Endpoint URL from your Azure Resource Group.
- Open the Azure Portal
- Open the Resource Group created during the deployment process.
- In this Resource Group, open the resource called wa-police-directory-external
- Your External API Endpoint URL can be found next the URL heading in the Essentials section:
This is the URL you need to provide along with your API Key to another organisation.
To read another organisation's address book, you must establish a new Partner Connection.
- Open the app as a Global Admin.
- Click the Partner Connections tab
- Click the Connect to a new partner button
- Provide the name of the organisation.
- Provide the API Key you have been given
- Provide the Endpoint URL you have been given
- Click the Save button
You should now be able to read from your partner's address book
- Open the app as a Global Admin.
- Click the Partner Connections tab
- Click the ··· menu icon next to the connection you wish to edit
- Click the Edit Connection Details link
- From this screen, you can edit the Organisation Name, the API key and External API Endpoint URL.
- Click the Save button to publish changes.
- Open the app as a Global Admin.
- Click the Partner Connections tab
- Click the ··· menu icon next to the API Key you wish to delete
- Click the Delete Connection link
- Click the Confirm button to finalise deleting partner connection.
Some organisations may limit access to the Graph API or their Active Directory instance for security reasons. GovAddressBook supports a manual-mode where users can set their own profile details without a sync service running from AD.
To enable manual mode:
- Open the Azure Portal
- Open the Resource Group created during the deployment process.
- In this Resource Group, open the resource called wa-police-directory-teams
- Click Configuration from the left-hand navigation.
- Click the Pencil edit icon next to the entry called MANUAL_MODE
- Change the contents of the Value field to TRUE
- Click OK to save.
The following functionality is limited in manual-mode:
-
No initial profile-sync
Normally, when a user loads the app for the first time their profile information is drawn from AD. This isn't possible in manual-mode.
-
Removal of profile field restrictions
In the default full-sync mode, end-users are limited to modifying their display name, pronouns and location. In manual-mode, they can edit their basic profile information, including their role, department and contact details.
-
No auto-deletion of users
GovAddressBook normally removes users from the app who have been removed from AD. Manual-mode removes this automatic sync.
-
No sync of profile information
There is no regular synchronisation of profile information from AD. As users' information changes, it will need to be updated in GovAddressBook manually to stay current.
-
No out of office sync
If a user is Out of Office, in manual-mode the Out of Office profile indicator won't show. Currently, there is no way to manually set this.
Admins can manage the profiles of their users from within the app
- Open the app as a Global Admin.
- Open the profile of the user you wish to edit it
- Click the ··· menu icon next the profile Display Name
- Click Edit Profile details to edit basic profile information, or click Add new Custom Field to insert a new custom field
- You can also edit or remove existing custom fields by clicking the Pencil or Bin icons next to each field.
- Open the app as a Global Admin.
- Open the profile of the user you wish to edit it
- Click the ··· menu icon next the profile Display Name
- Click the Delete this profile link
- Click Submit on the confirmation dialog to finish deleting the user. Note: If the user opens the GovAddressBook app again, this will recreate their profile as-new.