Cloud Solution, CRM, General

How to Automatic Provision and De-Provision Salesforce user licensing (No Code Solution)

Kam Matharu

Use Case – How to Automatic Provision the Salesforce user licensing via Azure Active Directory, and De-Provision or Deactivate using Salesforce Flows

As a Business User or Salesforce Admin or a Consultant or Business Analyst our focus is always “Less Code” solution. I am sure there are multiple ways to perform a particular task where you can write a APEX and Create APIs to Auto Provision / De-Provision the Salesforce Licensing. However, I would like to share “No Code” solution for all the business users or stakeholders

Proposal

This soultion does not require any Coding, Triggers or APEX

  1. Just-in-time Provisioning with Just-in-Time (JIT) provisioning, the identity provider sends user information to your Salesforce org in an Attributes statement in a SAML assertion. Just-in-Time Provisioning for SAML (salesforce.com)
  2. Enable Just-in-Time (JIT) provisioning in Salesforce to automatically create or update user accounts when users first log in to Salesforce with SAML single sign-on (SSO). ​
  3. Deactivate Users with The Last Login Date – The best approach is to perform this action, feel free to create Scheduled Flow (salesforce.com), this can trigger the user update automatically

JIT Refrence aeticles are as below:

Enable Just-in-Time Provisioning

Just-in-Time SAML Assertion Fields for Salesforce

Pre-requirements for JIT

  • Make sure Single-Sign-On have been enabled from Azure Active directory
  • MFA – Multiple facttor authentication also enable from Microsft Azure directory services
  • Admin or System Admin from IT department should have access Active Directory Service as an Administrator
  • IT person should have should have knowledge in Secure certificates.

Referance Article SSO: Azure Active Directory single sign-on (SSO) integration with Salesforce

Pre-requirements for Salesforce Flows

  • Salesforce User should be System Administrator
  • Salesforce Admins should know how to write a flow

For Salesforce Flow, please refer the following article: How to De-Activate or De-Provision Salesforce Users using Flow

** END **

Unknown's avatar

Published by Kam Matharu

Introducing Kam! With over 22 years of experience in the IT industry and more than 9 years specializing in the Salesforce ecosystem. I began my career in .Net technologies before transitioning to Mobile Security products and databases in London, UK. Since 2013, I've been dedicated to CRM, particularly Salesforce, while also actively engaging in knowledge sharing through various professional channels. Connect with me on my social link: linktr.ee/ksm1313live.

1 thought on “How to Automatic Provision and De-Provision Salesforce user licensing (No Code Solution)”

  1. Pingback: How to De-Activate or De-Provision Salesforce Users using Flow – Welcome to Kam's Tech Talk

Leave a comment