Step 1. Open the Aspire Admin UI.

Browse to the Aspire Admin UI. It is typically located at http://localhost:50505.

Step 2. Select the Seed option from the left hand menu.

The "Seed" option, identified by a "seed" image , is located on the left side of the application, just above the "Workflows" option. Click on it to navigate to the "Seed" page.

Step 3. Specify Connection Description and Type

Once on the "Seed" page, click on the the "+New" option to create a new Seed or select an existing one to modify it.

• Description: specify a description for the Seed. It is advised for it to be concise and meaningful.
  
• Type: select "Azure Identity" as the type for the Seed.

Step 4. Specify the Identity Extraction configuration (Optional)

Once the type has been selected, you will be presented with the "Identity Extraction" section of the "Seed" page. Here you need to set the following options for the Seed. If no options are modified, default values are used:

• Lowercase all identities: if checked, all extracted identities are stored in lowercase.
• Add Everyone group: if checked, adds an "Everyone" group for all user identities.
• Add Everyone Except External Group: if checked, adds the "Everyone except external users" group for all user identities.
• Matching User Regex: regular expression to filter users to add if the "Add Everyone Except External Group" option is enabled.
• Customize fields to be extracted: Enable in case you want specific fields to be retrieved as part of the metadata. If not set, it will retrieve the default fields: id, displayName and groupTypes / userPrincipalName and id. For more information regarding entities, please go here.

Step 5. Specify a Connector

The "Connector" section is located between the "Identity Extraction" section and the "Connection" section of the "Seeds" page. Here you must select a previously created Azure Identity Connector for the Seed, from the Connector combo box.

Step 6. Specify a Connection

The "Connection" section is located between the "Connector" section and the "Workflows" section of the "Seeds" page. Here you must select a previously created Azure Identity Connection for the Seed, from the Connection combo box.

Step 7. Specify Workflows (Optional)

The "Workflows" section is located between the "Connection" section and the "Tag" section of the "Seeds" page. Here you can select previously created Workflows that apply to the seed. If no workflow is specified a default workflow is assigned.

Step 8. Specify a Tag (Optional)

The "Tag" section is located between the "Workflows" section and the "Policies" section of the "Seeds" page. Here you can , if desired, specify a tag for seeds filtering.

Step 9. Specify Policies (Optional)

The "Policies" section is the last section, located right below the "Tag" section of the "Seeds" page:

• Throttle Policy: here you can select a previously created Throttling Policy from the Throttle Policy combo box.
• Route Policy: here you can select a previously created Routing Policy from the Route Policy combo box.

Step 10. Save the Seed

Click on the "Complete" button to save the new Seed (when updating, the button option will read "Save" instead of "Complete").

Step 11. Running the crawl

To run an Identity Crawl for an Azure Identity Seed, click on the button for the seed you want to run and select Identity Crawl. This will start the crawl for your seed.