Sign in to the Admin Console, navigate to Settings > Identity > Directories. Then, select Create Directory.
- Adobe Enterprise & Teams: Administration guide
- Plan your deployment
- Basic concepts
- Deployment Guides
- Deploy Creative Cloud for education
- Deployment home
- K-12 Onboarding Wizard
- Simple setup
- Syncing Users
- Roster Sync K-12 (US)
- Key licensing concepts
- Deployment options
- Quick tips
- Approve Adobe apps in Google Admin Console
- Enable Adobe Express in Google Classroom
- Integration with Canvas LMS
- Integration with Blackboard Learn
- Configuring SSO for District Portals and LMSs
- Add users through Roster Sync
- Kivuto FAQ
- Primary and Secondary institution eligibility guidelines
- Set up your organization
- Identity types | Overview
- Set up identity | Overview
- Set up organization with Enterprise ID
- Setup Azure AD federation and sync
- Set up Google Federation and sync
- Set up organization with Microsoft ADFS
- Set up organization for District Portals and LMS
- Set up organization with other Identity providers
- SSO common questions and troubleshooting
- Manage your organization setup
- Manage users
- Overview
- Administrative roles
- User management strategies
- Assign licenses to a Teams user
- In-app user management for teams
- Add users with matching email domains
- Change user's identity type
- Manage user groups
- Manage directory users
- Manage developers
- Migrate existing users to the Adobe Admin Console
- Migrate user management to the Adobe Admin Console
- Overview
- Manage products and entitlements
- Manage products and product profiles
- Manage products
- Buy products and licenses
- Manage product profiles for enterprise users
- Manage automatic assignment rules
- Entitle users to train Firefly custom models
- Review product requests
- Manage self-service policies
- Manage app integrations
- Manage product permissions in the Admin Console
- Enable/disable services for a product profile
- Single App | Creative Cloud for enterprise
- Optional services
- Manage Shared Device licenses
- Manage products and product profiles
- Get started with Global Admin Console
- Adopt global administration
- Select your organization
- Manage organization hierarchy
- Manage product profiles
- Manage administrators
- Manage user groups
- Update organization policies
- Manage policy templates
- Allocate products to child organizations
- Execute pending jobs
- Explore insights
- Export or import organization structure
- Manage storage and assets
- Storage
- Asset migration
- Reclaim assets from a user
- Student asset migration | EDU only
- Manage services
- Adobe Stock
- Custom fonts
- Adobe Asset Link
- Adobe Acrobat Sign
- Creative Cloud for enterprise - free membership
- Deploy apps and updates
- Overview
- Create packages
- Customize packages
- Deploy Packages
- Manage updates
- Adobe Update Server Setup Tool (AUSST)
- Adobe Remote Update Manager (RUM)
- Troubleshoot
- Manage your Teams account
- Renewals
- Manage contracts
- Reports & logs
- Get help
Creating a directory in the Admin Console is your first step in setting up your user and license management. A directory holds resources such as users, domains, and authentication policies. These directories are similar to LDAP or Active Directories.
If you're setting up your Admin Console users' identity management for the first time, we recommend you use Microsoft Azure AD or Google as your federated identity providers.
This document targets all SAML-based identity providers (IdPs), such as Microsoft AD FS. Use the procedure if your organization is using one or more of the following:
- A SAML provider other than Azure AD or Google
- Microsoft Azure AD or Google federation via SCIM
Adobe currently does not support IdP-initiated workflows.
-
Use the Set up IdP screen to get the setup information for your identity provider.
Some Identity Providers (IdP) accept a metadata file that you can upload, while others may require the ACS URL and the Entity ID. For example, for SalesForce, download the metadata file, extract the certificate information from the file and use that certificate information in SalesForce IdP software.
Choose one of the methods given below options.
Method 1:
Click Download Adobe Metadata file.
The metadata file is downloaded to your local disk. Use this file to configure your SAML integration with the Identity Provider.
Method 2:
Copy the ACS URL and the Entity ID.
-
Switch to your IdP application window and either upload the metadata file or specify the ACS URL and Entity ID. Once done, download the IdP metadata file
-
Return to the Adobe Admin Console and upload the IdP metadata file to the Set up IdP screen and select Next.
-
Set up auto-account creation.
Automatic account creation is enabled by default. It allows users without a federated account to automatically create one with their organization based on a verified email domain. When enabled for a federated directory, new users with a valid email domain in that directory will be able to create a federated account.
If you disable automatic account creation, new users in your organization who have valid accounts with domains of this identity provider will no longer be able to create a federated account automatically.
-
Select a default country from the dropdown menu in the Attribute mappings section. Learn more about attribute mappings.
-
You can also choose to update user information in Admin Console when users log in. Then, select Done.