Skip to main content
Skip table of contents

Microsoft Entra ID Integration

Currently, there are three methods available for authentication in our embedded solutions: User and Password, PIN, and Physical Identifier. However, when choosing to integrate a Microsoft Entra ID domain, only the PIN and Physical Identifier options will be available for authentication.

Below, we will describe how to register the PIN and physical identifier, in addition to the additional security verification required by Microsoft.

This manual refers to the configuration by NDD Print MF HP Client. First, you must enable integration with the Microsoft Entra ID domain in NDD Print Portal 360. Learn more →

PIN

First steps to start registering a Microsoft Entra ID domain

Learn more →

Physical Identifier

Information about the mandatory attributes to continue with the registration process.

Learn more →

PIN Registration

To start the PIN creation process with the Microsoft Entra ID domain, on the printer screen:

Access the Client application

  • Open the NDD Print Client installed on the printer

  • Navigate to the ‘Create PIN’ option

Domain Selection

  • Choose the domain where the PIN will be created.

  • Click on ‘Continue’

If there is only one Microsoft Entra ID domain, no domain selection screen will be displayed.

Scan QR code

  • Open the smartphone camera.

  • Scan the QR code displayed on the printer screen.

Redirection to Microsoft

At this point, the process will be carried out via the user's smartphone. After scanning the QR code on the printer screen, the user will be redirected to the Microsoft portal.

Enter the code provided

  • Enter the code that was provided on the printer screen.

  • Click ‘Next’ to confirm the code.

Code validation

After the code is validated, you will be asked to enter a Microsoft Entra ID domain account.

If you are using a smartphone with an account already linked to the Microsoft Entra ID domain, simply select it to complete the process. Otherwise, you can go to Use another account and enter the email address of the desired account.

Once the process is complete, an email will be sent to the user's mailbox containing the PIN information, allowing the user to authenticate themselves on the NDD Print Client installed on the device.

PIN processing

In some cases, even after completing the PIN creation process, you may not be able to log in. In this case, a message on the printer screen will indicate that the PIN is being processed. It is recommended to wait a few seconds before attempting to log in again

important

Due to Microsoft security requirements, additional verifications will be requested whenever it is necessary to renew the PIN link with the user registered in the Microsoft Entra ID domain. The renewal period will be determined by the settings established by the domain administrator.

The process will follow the model previously described for creating the PIN, where the user must scan the QR code to be directed to the Microsoft portal, enter the code displayed on the printer screen and finish by linking the Microsoft Entra ID domain user.

Physical identifier

For this type of authentication, there has been no change to the registration process. To do this, access control must be configured in the NDD Print Host (Cópia de (Current-pt) manual-nddprinthost Configurar autenticação - (Português) ) to allow authentication by physical identifier. It is also necessary to enable the PIN code option, which will serve as a way to identify the user during the registration of the physical identifier.

Before starting

As Microsoft Entra ID does not support integration with user and password authentication, make sure that the user already has a PIN associated with them, as this will be required for identification when registering the physical identifier.

Physical Identifier Registration (Card or Badge)

This process must be followed when the user attempts to use a card/badge on the equipment reader and the system informs that the identifier is not yet registered.

Unregistered identifier information

When approaching the identifier, the user will be informed that the card is not registered and will receive instructions to perform self-registration, requiring alternative login with one of the options below:

  • Login with username and password.

  • Login via personal PIN (if enabled).

This step is essential to ensure the correct association between your user and the physical identifier.

Identifier confirmation

The system will ask you to approach the reader again. Follow the instructions displayed on the equipment, placing the card/badge close to the reader.

Finishing the process

If the process is successful, a confirmation message will be displayed, indicating that the physical identifier has been successfully registered and is now linked to your user in NDD Print Portal 360.

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close