Account management

Learn how you can create, update and deactivate user accounts on Workplace.



While Workplace allows you to manage accounts manually or in bulk by using a spreadsheet, we recommend that you automate your account management to have better control over your people. With an automated account management tool in place, a user account will be automatically created, updated or deactivated in Workplace when the account is created, updated or deactivated in your organisation's user repository.

Workplace has an out-of-the-box integration with the largest cloud identity providers such as Azure AD, G Suite, Okta, OneLogin and Ping.

You can connect your cloud identity provider by:

If your organisation uses a different central user repository, you can use the Account Management SCIM API to create your own custom account management tool.

Connect via third-party integration

Connect via third-party integration

In this section, we cover how to connect Workplace with a cloud identity provider that your organisation manages by using a Workplace third-party integration.


To enable this configuration, the following is required:

  • Your organisation uses a cloud identity provider that integrates with Workplace.
  • You have integrated your master identity store (e.g. Microsoft Active Directory or Oracle Directory Server) with the cloud identity provider to synchronise user accounts.
  • A user in Workplace who has a role of system administrator.
  • Your users' email domains have been verified (recommended) or allow listed in Workplace.

Configure your cloud identity provider

Given that each cloud identity provider has created their own integration with Workplace, you'll need to follow their documentation in order to complete the provisioning process.

List of supported cloud identity providers

Azure AD

After a cloud connector is installed you can enable the setting Automatically invite people to Workplace as soon as they're added using this integration in case you want to immediately invite users when they are created by this integration.
Connect via Workplace Import

Connect via Workplace Import

In this section, we cover how to connect Workplace with a cloud identity provider that your organisation manages by using Workplace Import. Workplace Import support G Suite and Azure AD.

G Suite integration

G Suite integration

If the users in your organisation are managed using G Suite, then using Workplace Import from G Suite is the right solution to add, update and disable users in Workplace automatically.

Workplace Import from G Suite does not currently support multi-IdP integration. If your organisation is using multiple G Suite directories today, please consider consolidating into a single directory.


Configure the G Suite integration

For a successful setup, make sure that you follow the steps below:

In the Admin Panel, select People.

Click + Add People.

Click Connect an Identity Provider.

Select G Suite. The Set up G Suite as your identity provider window opens.

Click Connect, and log in using your G Suite admin account.

Select from: Add everyone, Add people from different departments, Add people that are part of a specific structure in your organisation (for example, report to the same manager).

Configure Invitations. Choose when you want to invite the users: You can send invitations automatically at the end of this configuration process or you can send invitations at a later date independent of this configuration process.

Select Create users to create the accounts.
The user profile attributes that will be automatically mapped are the following: email, externalID, firstName, lastName, fullName, manager, jobTitle, department, phoneNumber, location, isActive.
Manage via SCIM API

Manage via Account Management API

If you don't want to use one of the supported cloud identity providers, you can build your own custom automated account management tool. Take a look at our Developer documentation to see how you can create, update and deactivate users with the Account Management API.