Exchange server integration

Following document is still under construction.

This section will introduce the procedure of integration with Exchange Server. Based on the following integration steps, user can:

• Synchronize room / equipment from Exchange Server
• Synchronize user / user groups from Exchange Server
• Synchronize Bookings on the room / equipment between Exchange Server and Offision
• User can login to the Offision via Single sign on

info

If you are using Exchange Server Online, please refer to Microsoft 365 integration.

Network Connectivity

Network connection diagram

1. Connect from User Web App, Outlook Add-in, Management Console to Offision Server

   • For open the WebApps of Offision.
   • Port: TCP 443

2. Connect from Offision Server to Offision Player

   • For room display, floor display, etc.. connect to Servers to receive the signal., Offision Server can real-time update data through the https and wss protocol.
   • Port: TCP 443

3. Connect from Offision Server to SMTP Server

   • For sending email through the SMTP Server, sending email to the receiver.
   • Port: TCP 25, 465, or 587 (depend on the SMTP Server setting)

4. Connect from Offision Server to Exchange server through Exchange server PowerShell:

   • For synchronize all user and user groups in Exchange Server
   • Port: TCP 80

5. Connect from Offision Server to Exchange server through EWS:

   • For synchronize user's appointment in Exchange
   • Port: TCP 443

6. Connect from User Web App, Outlook Add-in, Management Console to the ADFS
   • For user single sign on with the Active Directory Federation Services (ADFS)
   • Port: TCP 443

Integration Steps

External Integration Setting

Prerequisites

1. Exchange Server 2013 or above
2. If using Exchange Server, ExchangePowerShell should be enabled with basic authentication. Setup guideline
3. Create a service account for grant the access right to the Exchange Server. Exchange server setup guideline

1. Open Offision Management Console
2. Navigate to Settings > External Integration
3. Click Add button, select Exchange server
4. Fill in the Service account email address, password, and exchange server address.
5. Select the data for synchronization based on your use case:
   • For user synchronization, you can select sync user only / sync user with user groups / sync user under specified user groups
   • For room synchronization, you can select sync all rooms / sync specified rooms only
   • For equipment synchronization, you can select sync all equipment / sync specified equipment only
6. Click Save button

You can also set a "Default native user groups". This setting will automatically assign users to user groups when the system synchronizes users.

Single sign on

This section will introduce the procedure of setting up single sign on in Offision.

1. Config the ADFS / Azure active directory. Please follows:

• ADFS setup guide
• AzureAD setup guide

1. Open Offision Management Console
2. Go to Settings > External Integration, then select an existing exchange server integration, click Menu button ⋮ and then click Edit
3. Enable Sync users, then the single sign on setting will be shown. Select ADFS in Single sign on by field
4. Fill in the metadata address and Wt RealM

• For Exchange server
  • In metadata address, fill in follow address https://{your active directory address}/FederationMetadata/2007-06/FederationMetadata.xml
  • In Wt RealM, fill in the for WS-Federation Passive protocol app's URL configured in active directory
• For Microsoft 365
  • In metadata address, fill in WS-Federation middleware's MetadataAddress
  • In Wt RealM, fill in the Application ID URI

5. (Optional) Fill in Login button name, it will show Login via Exchange server if leave the field empty
6. Click Save button.
7. Now user can single sign on in login page Login via Exchange Server

How to hide the default login fields and buttons in login page

Default login field and buttons are for user to login via system local accounts. If you are using the system without any local user accounts or you do not want user to login via local account, you can hide these fields by following steps in Management Console:

1. Navigate to Settings > General
2. Select Hidden local login in User App
3. Click the Update button

Advanced setting

Cross domain booking behavior

This setting allows users to book the resources in different domain.

• Representative email address: This column is for system to via the representative email address to book the resources which is under that domain.

The representative email address needs to under that domain and have permission to book resources. You are suggested to create a dummy account instead of real user account for better management.

Email setting

This setting will use the set email address to send system email.

• Sender email address: This column is for system to via the email address to send system. After you set the email address, you also need to set it on "Email setting".

The email address needs to under that domain. You are suggested to create a dummy account instead of real user account for better management.