Welcome to the Sysero Knowledge Base

Sysero Job Scheduler requires a timer service to be running to execute any scheduled jobs.

• Download the timer service installation file which you can request from a Sysero employee.
• Once installed on the server, open the registry and find HKLM\Software\Sysero\SyseroCTX
• Enter the URL of your system in the URL key
• For the GUID key, enter the GUID found under "Service setup" on the Admin > Job Scheduler page
• Ensure the service is started in Windows and set to "Automatic"
• If you require the Timer Service to run against multiple Sysero instances you can comma separate the URL's and GUID's as long as they are in the same order. For example the second comma separated URL must have corresponding second comma seperated GUID.

Most of the time reindexing of SQL is not required and often DBA's will run scripts anyway.  The below can be run to rebuild all indexes for a database.

Exec sp_msforeachtable 'SET QUOTED_IDENTIFIER ON; ALTER INDEX ALL ON ? REBUILD'
GO

Important!  This article details the setting up of user authentication to Sysero via Office365, please see seperate article for access to AzureAD/Office365 API (Microsoft Graph) and Key Vaults

Pre-requisite you will need to either be an administrator of your Office365/Azure/Entra ID environment or you will need to pass on the details to an administrator.

Office365 (Azure Active Directory) Settings

Please note the steps below may change from time to time, if they no longer match please let Sysero know and we will update this article.

1. Go to Azure Portal > Azure Active Directory or Entra admin center.
2. Click on App Registrations.
3. Click on New Application Registration.
4. Enter the name e.g. Sysero (User Delegated)
5. Leave Supported Account Types as Single Tenant
6. Set Redirect URL for Web type http://www.example.com/login2.aspx (whole URL is case sensitive).
7. Copy the Application (client) ID, will be required in Sysero configuration.
8. Copy the Directory (tenant) ID, will be requried in Sysero configuration..
9. Under Authentication settings in App Registration ID Token needs to be checked.
10. In API Permissions check that the following is set
    1. Microsoft Graph, User.Read, User Delegated permission, leave this in place and Grant Admin Consent.

Sysero

The below details how to set this up for System users of Sysero, see section Multi tenant Office365/AzureAD section below for external client access to client portals.

1. Go to the Sysero > Admin > System page.
2. Go to OAuth Settings.
3. Set OAuth Mode Office365, this can be either two modes:
   1. Enabled Hidden : Allows &OAuth=Office365 on query strings but does not button on logon page.
   2. Enabled Visible : Button appears on Logon page.
4. Take the Application (client) ID from App Registraton and put it in OAuth ClientID Office365 (User Delegated).
5. Take the Directory (tenant) ID from App Registraton and put it in OAuth DirectoryID Office365.
6. OAuth Secret Office365 (User Delegated) will be covered in another article and are not required for authentication.
7. Save the Settings.
8. Go to user accounts (Admin > Users) and edit the ones you want enabled for Office365, tick the Office365 box.

Logout and go to the login page, you should find a Microsoft Icon, click on the Microsoft Icon and follow instructions.

Multi tentant Office365/AzureAD/Entra ID

This is required when external client requires access to a client/site portal using their Office365/AzureAD account, follow these steps to setup:

1. In Sysero > Admin > Client/Site go to User & Site Logon.
2. Using Application (client) ID set OAuth ClientID Office365.
3. Using Directory (tenant) ID set OAuth ClientID Office365.
4. This OAuth tenant is selected by Sysero via either:
   1. OAuth Logon AuthSite QueryString Match being set to something unique like ClientA and in login2.aspx query string adding AuthSite=ClientA.
   2. Setup a different domain alias for client e.g. if main site was sysero.example.com the you could have a clienta.example.com as a secondary DNS alias.  So on Settings page of Client/Site in Domain Alias you set clienta.example.com.  Then the site will automatically know which OAuth tenant to use.

You have three additional options settings:

1. Login Options : Which methods of logon can be used for this site/client.
2. Valid Days for Auth Cookie when using OAuth : Recommend setting 1, but for example if set to 14 and account was disabled in Office365, then it will still work for 14 days more.
3. Auto Enable Office365 OAuth from simple user management : If anyone is added via Simple User Management interface in Sysero, tick the box to Enable Office365 on creation.

Account Auto Creation and Validation

Both system level OAuth and site/client level OAuth have option to auto create accounts or validate domain is still acceptable for this method of logon.

Settings are found in either Sysero > Admin > Client/Site go to User & Site Logon or Sysero > Admin > System > OAuth Settings.

Following options for adding are:

• Provider : Should be Office365 for this article.
• Match Value : Should be in format of @example.com, matching e-mail domain of users being returned from OAuth token.
• Role : Role user should be set to on creation.
• Mode : Is this for creating user, or just validating e.g. for validation if no match found, logon will be rejected (but only if their are entries in this table, otherwise all are allowed).

Troubleshooting

• Please note when already logged in it may say it cannot find ApplicationID.
• Sysero server must have internet access to Microsoft Office365 OAuth servers.  This is because it talks directly to validate token.

XMLField1.value('count(//RepeaterData/Repeat)', 'varchar(50)') obviously replace XMLField1 with whatever field you are using and varchar(50) is just for example.

You can either populate a dropdown from another data room in Sysero or from an external source, this article will use the internal option as an example:

1. Create a new data action in Admin > Data Actions.
2. Set the type to SQL.
3. Set the Connection String, using the same one you used in the web.config when accessing Sysero.
4. Find out the fieldnames from the data room you want to use data from e.g. ItemName and TextField1.  Also note the ApplicationID in the URL.
5. Example SQL command will be something like this "SELECT ItemName, TextField1 FROM Claims WHERE ISNULL(Archived,0) = 0 AND ApplicationID=1 ORDER BY ItemName"
6. Dropdowns will be populated with either one or two output mappings, if only one output mapping it added it will be both display value and stored value. 
7. Output mappings should be set to "No Output" as not populating other fields.
8. The first output mapping should be the display one e.g. ItemName, the second one should have the Hidden checkbox checked and in this example may be TextField1.  Sometimes you may decide to store the unique ID, the field for which in the Claims table is ID.
9. Once the Data Action is created, go to the Form, set field type to Data Action, go to Data Action Settings and set display type to Dropdown and select the data action to populate it from.

To use a data action to read from UK Companies house, please first register for an API key https://developer.companieshouse.gov.uk/api/docs/

Data action settings:

1. Type REST
2. Example URL https://api.companieshouse.gov.uk/search?q=[!InputField!] where [!InputField!] = field to search with from Sysero form.
3. Example Node XPath = //items
4. Domain\UserName = API Key
5. Password = blank (note must be blank lower case).
6. Example Output field name = title
7. Additional Settings = json set to true.

Once this is confirmed as working see other examples at https://developer.companieshouse.gov.uk/api/docs/

You can use this to archive a running workflow on the current item executing the data action.  Please note this is also available as a Task Action in the workflow, so primarily probably only used on a Data Action Button.

Simple way of filling dropdown from another data room / applications data.  More often than not SQL Data Actions are used to achieve this for more complex requirements.