First 24 Hours (F24H) Wizard

After you sign up for a Lazsa free trial account, you receive a welcome email on your registered email address requesting you to reset your password. After you reset the password, you can sign in to the F24H wizard by using your registered email address and your new password.

To perform the configuration steps in the F24H wizard, do the following:

Get Started

On the welcome screen, click Get Started.

As an Administrator, you perform the following initial configuration tasks in the First 24 Hours (F24H) wizard to set up the Lazsa Platform for you and other users in your organization.

Select authentication type

As a first step, select the type of authentication using which you want to prove your digital identity to the Lazsa Platform. Select one of the following options:

Selecting type of authentication in F24H Wizard

Federated Authentication

If you choose Federated Authentication, that means, for user authentication in the Lazsa Platform, you want to use the identity data that is already stored in an identity and access management solution that Lazsa supports. Thus, you do not need to create separate sign-in credentials for your Lazsa users. That’s why, after you select the Federated Authentication option, Single Sign On (SSO) is enabled by default. Do not disable this option.

Currently, we support the following identity provider solutions. Choose either of the two and click Proceed.

  • Microsoft Active Directory
  • Microsoft Azure AD

Depending on your preferred identity provider solution, perform the following steps.

To configure user authentication by using Microsoft Active Directory, do the following:

  1. Choose Microsoft Active Directory as your configured identity provider for federated authentication and click Proceed.

  2. Configure SSO by using one of the following options:

    • Import from URL - Provide the URL of federated metadata XML. The fields are auto-populated after you import the XML file.
    • Import from External IDP File - Import the external identity provider file. The fields are auto-populated after you import the file.
    • Enter the following parameters manually:
      • Single Sign-On Service URL
      • Single Logout Service URL
      • Validating X.509 Certificate

        Configuring SSO using Microsoft Active Directory
  3. Click Proceed.

  1. On the Import/Add users screen, do one of the following:

    • Import users from Microsoft AD

    • Add users manually

     

    1. To import users from Microsoft Active Directory, on the Import/Add users screen, click Microsoft AD.

      Note:

      Before you try importing users from Microsoft Active Directory, make sure you are connected to your enterprise VPN.

    2. Enter the following details:

      • Valid LDAP Connection URL

      • Bind DN or User

      • Bind Password

        Importing users Microsoft Active Directory

        Note:

        You must have Microsoft Active Directory administrator rights to configure SSO. If not, you can delegate this task to the user who has the administrator rights. Enter the first name, last name, and email address of the user and click Delegate.

         


    3. Click Test Connection to validate the connection details that you have configured.

    4. Click Configure & Import Users.

    5. Select the desired users that you want to add to the Lazsa Platform.
      Select users to add to the Lazsa Platform

    OR

    To add users manually, do the following:

    1. On the Import/Add users screen, click Manual.

    2. On the Add Users to the Platform screen, click Add.
    3. Type the user details such as name, valid email address, and country.

    4. Click Add.

    5. After you add all the intended users, click Done.

    6. Click Proceed.

     

  1. On the Two-Factor Authentication screen, select the Email OTP Based option. This step is optional. Enabling two-factor authentication provides an additional layer of security for users signing in to the platform. You can skip it and enable this option later. See Two-factor Authentication.

  2. Click Proceed.
    Now, it’s time to assign Administrator role to the users that you added.

On the Select Administrators screen, from the dropdown list, select the users to whom you want to assign the administrator role and click Configure.

A summary page provides the details of total users added and administrator roles assigned. Review the details. You must download the federation metadata XML file and use it to create Relying Party Trust in the AD FS Management snap-in.

After you download the federation metadata XML file, click Finish.

Note:

After you configure SSO, the credentials using which you signed in to the F24H wizard will not work anymore. The administrator that you selected in the earlier step can sign in to the Lazsa Platform and add other users to the platform.

Before you select this option, make sure you complete the following prerequisites:

  • Have Microsoft Azure Active Directory configured.

  • Have an application registered in Microsoft Azure AD portal.

  • Fetch Tenant ID, Client ID, and Client Secret of the registered application from Microsoft Azure portal.

  • Add the following mandatory API permissions to the application in Microsoft Azure AD:

    • User.Read (Default)

    • User.Read.All (Type – Application)

  1. After you complete the prerequisites, choose Microsoft Azure AD as your configured identity provider for federated authentication and click Proceed.
    Choose Microsoft Azure AD for federated authentication

  2. On the Configure Microsoft Azure AD screen, enter the values for the following fields that you fetched in the Prerequisites section:

    • Tenant ID
    • Client ID
    • Client Secret
      Configuring Microsoft Azure AD connection details

      Note:

      You must have Microsoft Azure Active Directory administrator rights to configure SSO. If not, you can delegate this task to the user who has the administrator rights. Enter the First Name, Last Name, and Email ID of the user and click Delegate.

  3. Click Test Connection to validate the connection details that you have configured.
  4. Click Proceed.

On the Import/Add users screen, do one of the following:

  • Import users from Microsoft Azure Active Directory

    1. To import users from Microsoft Active Directory, on the Import/Add users screen, click Microsoft Azure AD.

    2. Select the desired users that you want to add to the Lazsa Platform.

      Select users to add to the Lazsa Platform

      OR

  • Add users manually
    To add users manually, do the following:

    1. On the Import/Add users screen, click Manual.
    2. On the Add Users to the Platform screen, click Add.
    3. Type the user details such as name, valid email address, and country.

    4. Click Add.

    5. After you add all the intended users, click Done.

    6. Click Proceed.

  1. On the Two-Factor Authentication screen, select the Email OTP Based option. This step is optional. Enabling two-factor authentication provides an additional layer of security for users signing in to the platform. You can skip it and enable this option later. See Two-factor Authentication.


  2. Click Proceed.
    Now, it’s time to assign Administrator role to the users that you added.

On the Select Administrators screen, from the dropdown list, select the users to whom you want to assign the administrator role and click Configure.

A summary page provides the details of total users added and administrator roles assigned. Review the details. You must copy the reply URL before you click Finish on the summary page.

Update the copied reply URL in the registered application in the Microsoft Azure AD portal at the following location: Application -> Redirect URIs -> Web -> Add URI.

Note:

After you configure SSO, the credentials using which you signed in to the F24H wizard will not work anymore. The administrator that you selected in the earlier step can sign in to the Lazsa Platform and add other users to the platform.

Platform-Managed Authentication

Choosing this option means you want the Lazsa Platform to manage user authentication for you.

  1. On the Add Domain screen, add the domains of which you want to add users to the Lazsa Platform.

  2. Click Next.

  3. On the Import/Add users screen, click Manual.

  4. On the Add Users to the Platform screen, click Add.
  5. Type the user details such as name, valid email address, and country.

  6. Click Add.

  7. After you add all the intended users, click Done and then click Proceed.

  8. On the Two-Factor Authentication screen, select the Email OTP Based option. This step is optional. Enabling two-factor authentication provides an additional layer of security for users signing in to the platform. You can skip it and enable this option later. See Two-factor Authentication.


    Now, it’s time to assign Administrator role to the users that you added.

  9. On the Select Administrators screen, from the dropdown list, select the users to whom you want to assign the administrator role and click Configure.

  10. A summary page provides the details of total users added and administrator roles assigned. Click Finish.

    Note:

    After you configure the platform-managed user authentication, the credentials using which you signed in to the F24H wizard will not work anymore. The administrator that you selected in the earlier step can sign in to the Lazsa Platform and add other users to the platform.