Logical components

The logical components are essential parts of Elqano that integrate with your organization’s environment. They handle authentication, document access, user management and permissions. These components connect Elqano to your Azure Active Directory and Microsoft Graph API to provide seamless access while maintaining security.

Logical components include:

• Enterprise Application for Single Sign-On authentication
• App Registration for API permissions and access
• Graph API registration for accessing Microsoft 365 resources

This section will guide you through setting up and configuring each logical component to properly integrate Elqano with your environment.

What user information are we using?

Elqano uses an Azure Active Directory SSO Enterprise Application to authenticate your users (via SAML). It has to be configured in your system as well as in Elqano web application.

The only information about users we are using are:

• The email
• The user UUID
• The first name
• The last name
• The profile picture
• The elqano assigned role
• The job
• The location

All these values are coming from your Azure Active Directory and will never be exposed outside of Elqano.

This values will be stored in the application database and encrypted at REST and Transit.

Elqano uses an App Registration to access required information needed to fully integrate to your work environment.

• How are logical components set up?
  • Entreprise application: Elqano Single Sign On application
  • Application Registration
  • Create an Elqano Graph API registration
  • Logical components’ integration

How are logical components set up?

Next

Explore the following sections for more details about setting up the logical components: