There are 2 ways you can enroll SafeID hardware tokens in Azure AD
- Use Azure AD Portal and PowerShell script
- Use SafeID Token Service
If you have a small number of hardware tokens to manage, then you can the Azure AD portal. However, if you have a large number of hardware tokens to manage, then you are recommended to use the SafeID Token Service.
Use Azure AD Portal
Azure AD portal provides a very basic facility that allows you to enroll and manage tokens. The enrollment process is manual and takes 3 steps:
- Assign tokens to users
- Upload tokens to Azure AD
- Activate tokens
Furthermore, Azure AD portal does not provide a facility for activating tokens in bulk. We have to write a PowerShell script for bulk activation.
- How to Upload SafeID Hardware Token to Azure AD
- How to bulk activate SafeID hardware tokens in Azure AD
- How to bulk remove SafeID hardware tokens from Azure AD
Use SafeID Token Service
SafeID Token Service (STS) is a product/service that we have developed for customers who need to manage a large quantity of SafeID tokens with Azure AD.
SafeID Token Service provides a Web-based GUI console that allows customers to manage the full life cycle of the SafeID token by simply pointing and clicking. You can assign, activate, deactivate, unassign, delete and replace a token, etc with one single click.
For more details, click SafeID Token Service