Active Directory | Overview

Azure Active Directory (AAD) is one of the authentication methods that Company users can use to sign in to Tracker. AAD provides a single, automated, auditable process for adding and deactivating users. Tracker user identity attributes are synchronized from Active Directory. Active Directory is used to manage user access, authentication, and user adding/deactivating in Legal Tracker. Companies can add and deactivate company users with their existing onboarding processes and tools. Users whose access to Tracker is managed from their corporate systems are called managed company users.

Two subsystems in Azure AD perform automated maintenance tasks:

The Provisioning Subsystem performs user provisioning (creation) and update and de-provisioning (inactivation)

The Health Check Subsystem reviews the integrity of Tracker databases nightly and identifies matter management and administration workflows that have become impaired due to the automated inactivation of Managed Company Users by the Provisioning Subsystem.

When Active Directory is enabled, the Tracker start page redirects company users to their company-managed sign-in page so that all company users are authenticated by the company system before they access Tracker. Company users sign in to Tracker by using their company-issued credentials, which are authenticated by the company’s identity or SSO provider.

Contact your Client Support Manager or Legal Tracker support if you are interested in enabling Active Directory integration.

Azure Active Directory Managed Company Users

A managed company user
is a company user whose identity and access to Tracker is managed from their corporate identity systems. Managed Company Users sign into Tracker using a work account sign-in procedure provided by their company.

Managed company users must have primary/work email addresses using company-owned domains. This address is used by Tracker to route the Managed Company User to their company-managed sign-in experience to gain Tracker access.

The following actions are not available to managed company users:

Creation, Inactivation or Reactivation:

New managed company users can only be created through the Active Directory integration. Other user types (Firm users, web services users, etc.) can be created.

The user cannot be inactivated or reactivated in Tracker. These actions must be initiated from the company’s Active Directory.

Work Account Passwords

The user’s work account password cannot be changed or reset in Tracker. The user’s work account (credential) is managed by their company's identity system.

User Attributes

The following attributes for Managed Company Users cannot be changed in Tracker by any company user:

Work Email

First Name

Middle Name

Last Name

Title

Company

Street 1

Street 2

City

State

Zip/Postal Code

Country

Work Phone:

The following attributes are not supported for Managed Company Users:

Personal Email

Other Email

Home Phone

Fax Phone

Mobile Phone

Other Phone

When pre-existing Tracker users are migrated to Managed Company Users, any unsupported attributes are removed.

New User Email

Tracker Coordinators can send a custom new user email to provide sign-in and other information for new Managed Company Users.

This article applies to:

Product: Legal Tracker
Audiences: Company

Categories

Top products

Recommended Products

Categories

Top products for corporations

Top products for accounting firms

Recommended Products

Recommended Products

Categories

Top products

Recommended Products

Who We Serve

Services

Platforms

Media Solutions

About

Recommended Products

Recommended Products

APIs by industry

Use case library

Related sites

United States Support

International support

New releases

Join a TR community

Free trials & demos

Active Directory | Overview

Azure Active Directory Managed Company Users

This article applies to:

Related content