User Auto Provisioning (UAP) automatically add users who match the configured domain to your plan.
With UAP enabled, when a user with a validated domain logs in, they are automatically added to the account user-list. It may be helpful to think of this as “Just In Time” provisioning by domain.
Enabling UAP will ensure that users with company domains abide by the same security and account settings. You can setup multiple domains if needed.
Automatically add users to an Enterprise plan with User Auto-Provisioning (UAP)
User Auto Provisioning (UAP) automates the process of adding users to an Enterprise account in Smartsheet. Rather than manually inviting users through the User Management screen, enable this feature to automatically add users to your account if they sign up for, or on their next sign in to Smartsheet with an email address owned by your organization. You can choose to automatically add users to the account as licensed or non-licensed, depending on the access you'd like to provide.
Users automatically added to the account via User Auto Provisioning can still be managed from the User Management screen. Any System Admin on an Enterprise account can enable User Auto Provisioning within Smartsheet.
Completing the process will require you to add records to your Domain Name System (DNS), so you may need to loop in an internal technical resource for assistance.
Add and activate domains
- Log in to Admin Center.
- On the right sidebar, select Settings > Domains & User Auto-Provisioning.
- Select Add Domain. The Domains Validation form appears in the right pane.
- Follow the instructions on your screen.
A domain can't be deactivated or deleted if User Auto Provisioning is enabled and no other domain has been activated. Turn User Auto Provisioning to Not Enabled, or activate additional domains, to deactivate or delete the existing domain.
Enable UAP on active domains
- In the domains list, toggle User Auto-Provisioning to on. There's no limit to the number of domains you can add.
If a user appears in your user list whose email address domain does not match the domains you've configured for User Auto Provisioning, then it's possible that the user exists in your SSO identity provider or was invited by another System Admin. This can occur if the user enters an email address matching your UAP domain on the Smartsheet login page, then a different email address is used after the user is redirected to the identity provider login page.
Password prompts
In some cases, when User Auto Provisioning (UAP) is enabled on an account, new users may be prompted to create a Smartsheet password when they first log in, even if the organization doesn't have the Email & Password login option enabled.
This can occur when a user account is created by a sheet share and the user hasn't followed the sheet share link to finalize the UAP process or if the user is invited via User Management instead of provisioned via UAP.
Have the user set a password to complete the signup process for their account. This will complete the enrollment process and they will be able to log in as usual.