CAPABILITIES
Company Type
Topics
- All Asana features
- Set up your ideal workspace
- You’ve been invited to Asana; now what?
- Top features to discover
- Getting started with Asana’s mobile app
- Navigating Asana
- Create projects in Asana
- How to use Asana help resources
- Different types of tasks
- New navigation in Asana
- Quick-start guide to Asana
- Collaborating in Asana
- Create tasks in Asana
- How Asana works
- Asana desktop app
- Structure your projects clearly
- Stay informed with your Asana Inbox
- Manage and prioritize your tasks
- Comments, messages, and status updates
- Automate and scale your work with the Customize menu
- Assign tasks to teammates
- Powerful Asana features for work management
- Find work fast with search
- Create projects quickly with templates
- Maximize productivity with My tasks
- Connect your tools with Asana
- Plan and execute projects with a deadline
- Top Asana integrations
- Monitor initiatives and track work with portfolios and dashboards
- How to invite team members to Asana
- Setting and tracking progress towards goals
- Asana for team leads
- How to choose the right project blueprint for your work
- Reporting with dashboards
- Reporting with workload
- Customize your projects and portfolios
- Planning with Asana calendar
- Tracking project progress
- Share project updates
- Make the most of your Asana trial
- How to cancel your Asana trial
- My trial has ended, what happens to my tasks, rules, and workflows?
- How to add payment details to a trial
- Purchasing a subscription after a trial
- Turn your trial into a paid plan
- Set goals during your Asana trial
- Invite others during your trial
- How to sign up for a free Asana trial
- What is a workflow?
- Add movement to your workflow
- Multi-home tasks to avoid information silos
- Assign work automatically with custom fields
- Building cross-functional workflows in Asana
- Moving your everyday workflows to Asana
- Schedule tasks based on priority
- Build the foundation of your workflow
- Automate how work moves through stages
- Request a task review with a simple automation
- Use dependencies to kick work off at the right time
- Control how tasks are added to projects
- How to export all time entry data from Asana as CSV via API
- Formula custom fields
- Custom fields
- Conditions and branching in rules
- Dependency types
- Auto-shifting dates for dependent tasks
- Rules integrations for cloud storage and file sharing
- Rules integrations for productivity and communication
- Custom field types and limitations
- Rule actions
- Rule permissions
- Filtering and sorting custom fields
- Sharing a form
- Manual rule triggers
- Setting dates in rules
- PagerDuty rules integration
- Management dashboard for global fields
- HubSpot rules integration
- Bundle management and permissions
- Bundles FAQ
- Reference custom fields
- Workflow builder
- Rules integrations and widgets
- Management dashboard for project templates
- ID custom fields
- Applying bundles to projects
- Field mapping in forms
- Email communication with form submitters
- Rule triggers
- Rule execution history
- Form customization
- Variables in rules
- Status updates templates
- Time tracking in Asana
- Task dependencies
- Approvals
- Forms
- Project templates
- Task Templates
- Bundles
- Rules
- Migrating time tracking data from Everhour to Asana
- Calendars and Asana
- Zoom meetings in Asana
- GitHub and Asana integration
- Microsoft Teams and Asana integration
- Zapier and Asana
- Vimeo and Asana
- Power BI integration
- Google Calendar + Asana
- Google Sheets & Asana
- Instagantt + Asana
- How to create a Zoom call notes workflow with AI Studio
- Zoom transcripts for automation and AI Studio
- Zendesk integration
- Asana in Salesforce AppExchange (being deprecated)
- Wufoo and Asana
- Asana and Workplace from Meta
- Jira Data Center FAQ
- Outlook Calendar and Asana
- Tray.io + Asana
- Web forms & Asana
- Splunk + Asana
- Asana app in ChatGPT
- Asana for Adobe Creative Cloud
- Jira Data Center
- Google Forms and Asana
- Compliance management: API and integration support
- Asana for Gmail add-on
- Google and Asana
- Google Smart Chips
- Asana for Jira Cloud FAQ
- Chrome Extension + Asana
- Salesforce in Asana integration
- ServiceNow & Asana
- Enabling permissions for Asana-built and Microsoft 365 integrations
- Asana for Tableau integration
- Asana for Jira Cloud
- API
- Slack and Asana
- Asana for Outlook add-in
- Asana app in Claude
- Progress, status, and connecting work to goals
- Goal types and templates
- Goals strategy map
- Write great goals with Asana Goals
- Get started with Asana Goals
- The goal tracking process with Asana Goals
- Lead the goals management process in your organization with Asana Goals
- Weighted goals
- Goals privacy and sharing
- Viewing and filtering your goals
- Asana Goals FAQ
- Text formatting in Asana
- Task fields
- Email tasks to Asana
- Rules in My tasks
- Task actions
- My Tasks
- Scheduling tasks using start dates, due dates, and times
- Proofing
- Save time in Asana
- Subtasks
- Understanding tasks
- Task comments and attachments
- Views in My tasks
- Custom fields in My tasks
- Converting tasks into projects
- Custom task types and statuses
- Tags
- Shareable notes in Asana
- Timeline
- Understanding projects
- Calendar view
- Import data from other tools to projects in Asana
- List view
- Managing tasks and dependencies with timeline
- Sections
- Advanced CSV import options
- Critical path on timeline
- Project owner and members
- Gantt view FAQ
- Files view
- Project overview tab
- Board view
- Embedded media project view
- Gantt view
- Project importing and exporting
- Preparing data for CSV import
- Teamless projects
- Notes view
- Project customization and views
- Project permissions
- Individual project permissions
- Team permissions
- Private custom fields
- Edit restriction on custom field values
- Project privacy settings
- Asana custom field permissions
- Team content permissions for team admins
- Viewer project access level
- Project admin access level
- Domain-wide admin controls
- Read-only links
- Permissions overview
- Editor access level
- Custom field access levels
- Sharing and limiting access to teams
- Team sharing
- Task permissions
- Forms access permissions
- Asana for Agile and Scrum
- Project intake
- Asana for team meetings
- Giving feedback and approvals
- How to apply a RACI Matrix in Asana
- Pipelines
- Plan and manage company goals
- Organizational strategic planning
- Resource planning
- Ideas and brainstorms
- End-of-month close processes for Finance teams
- One-on-ones
- Using Asana to track customer feedback
- Using Asana for project management
- How to use Asana for account tracking
- Event planning with Asana
- Creative production
- Campaign management
- Managing design feedback and critique meetings
- Using Asana for your product roadmap
- Asana for Sales and Account Management teams
- Video production calendar
- How to create a content calendar in Asana
- Marketing strategic planning
- AI add-on beta services
- Get started with AI Teammates
- Asana AI features and admin controls
- Sharing feedback on AI features
- Smart projects
- Smart editor
- Smart summaries
- Asana AI FAQ
- Smart fields
- Smart goals
- Asana AI customization
- Smart import
- Smart rule creator
- Smart status
- AI Teammates
- Triggering AI Teammates
- Smart chat
- Get started with Asana AI
- Understanding access control, memories, and approvals for AI Teammates
- Managing your AI Teammates Add-On Licenses
- AI Studio credit optimization
- Work smarter with Asana AI
- Create Smart workflows with AI Studio
- Writing instructions in AI Studio
- Connect your Smart workflow with the right data sources
- How to structure a prompt in AI Studio
- AI Studio pre-built AI rules
- Words to workflows in AI Studio
- AI Studio FAQ
- Troubleshooting in AI Studio
- How the Use AI variable works
- AI Studio - Human in the loop
- AI Studio Plus
- An admin's guide to AI Studio
- Introduction to Asana AI Studio
- AI Studio models
- AI Studio add-on and pricing
- eDiscovery Resource Center
- Asana Japan Data Center
- HIPAA Compliance
- Asana EU Data Centre
- Asana and Global Trade Compliance
- Privacy and security
- Accounts
- Enterprise Key Management (EKM)
- Mandatory two-factor authentication
- Two-factor authentication
- Setting up Asana roles in Okta with SCIM
- Service accounts
- Data retention policy
- Access and permissions
- Delete your Asana account
- Asana account email policy
- Multiple accounts and merging
- Setting SAML group mapping for licenses
- SAML group mapping and SCIM interaction
- Compliance management add-on
- FedRAMP Compliance
- SecureAuth for Enterprise Organizations
- Profile field editability controls
- Global authentication settings
- Automatic guest removal
- Mobile apps security permissions
- How to separate Asana accounts
- Admin security controls
- App management and integrations
- Permissions management add-on
- Managing password settings in the admin console
- IP allowlisting in Asana
- Provisioning and deprovisioning users with SCIM
- Authentication and access management options for paid plans
- Claiming admin permissions on work items
- Role-based access control (RBAC) with custom roles
- Asana IP address ranges and hostnames
- Data Residency for Asana
- Multi-org deployment
- Setting up Asana roles in Microsoft Entra ID with SCIM
- How to access the admin console
- Admin and super admin roles in Asana
- Manage approved workspaces
- University organizations
- Managing an organization
- Managing organization settings
- Managing teams through the admin console
- Managing people in organizations
- Understanding workspaces
- Workspaces and organizations FAQ
- Managing members in an organization
- Division access and management FAQ
- Advanced division management
- Managing workspaces
- Introducing Asana Gov
- Managing members and teams in a division
- A guide to divisions in Asana
- License assignment in divisions
- Asana Sandboxes
- Membership and collaboration in workspaces
- Your Asana account
- Changes to automatic payments in India due to RBI regulations
- Adding payment methods for manually invoiced customers
- Payments in MXN and BRL currency
- VAT/GST & Sales Tax
- Payments in CAD and KRW currency
- Upgrading or changing your Asana plan
- Accessing your billing page
- Iceland VAT
- Norway VAT
- Singapore GST
- Switzerland VAT
- New Zealand GST
- Indonesia VAT
- United Kingdom VAT
- South Korea VAT
- South Africa VAT
- EU VAT
- Australia GST
- United States sales tax
- Subscription management and upgrades
- Philippines VAT
- Canada GST/HST, QST, and provincial sales tax
- Payment methods and invoices
- Billing settings in the admin console
- Security and billing for divisions
- How to cancel your Asana plan
- Billing
- Divisions
- Learn about Asana Premium features
- Learn about Asana Legacy Enterprise features
- Learn about Asana Business features
- Asana for nonprofits
- Learn about Asana Starter features
- Learn about Asana Advanced features
- Modify your Asana plan
- Manage your growing Asana subscription
- Asana Personal Plan details
- Asana subscriptions and pricing
- Pricing and purchases
- View only
- Deprecation of integrations
- Troubleshooting browser and connectivity issues
- Accidental deletion
- Security and permissions
- Salesforce AppExchange Integration Deprecation FAQ
- Tasks and subtasks
- Asana Forum basics
- Asana Certification FAQ
- Upcoming discontinuation of personal projects spaces
- Navigation and display
- How do I get support from Asana?
- Recover deleted tasks, projects, and more
Setting up Asana roles in Microsoft Entra ID with SCIM
Available to organizations on an Enterprise+ plan.
Note
Super Admin roles cannot be assigned through SCIM. To designate a super admin, use the Asana admin console after completing super admin verification. SCIM can assign admin, member, and guest roles only.
Before you begin
- Make sure that Asana’s integration has already been added to your Microsoft Entra ID account and is set up.
- You must enable the creation of custom attributes for the Asana application in Microsoft Entra ID. To do so, use the this link to open the Microsoft Entra ID portal with the schema fully enabled.
- Alternatively, append this bolded string to your URL
- Add the /?Microsoft_ADD_Connect_Provisioning_forceSchemaEditorEnabled=true#view/
- Alternatively, append this bolded string to your URL
Set up the roles attribute and attribute mapping in Entra ID
Once your Asana domain is connected, go to the Provisioning tab.
Expand Mappings, and under that, click Provision Microsoft Entra ID Users
Scroll to the bottom of the Attribute Mapping page, and check Show advanced options. This will display a few more options. Click Edit attribute list for Asana.
If this is not available to you, make sure that you have followed the step in Before you begin to open Microsoft Entra ID with the schema fully enabled.
On the Edit Attribute List page, add a new user attribute called rbacRoles as a String type. Save the attribute list.
Back on the Attribute Mapping page, click, Add New Mapping.
Set the Mapping type to Expression
Set the Expression to
-
Join(",",
IIF(Instr(Join("", AssertiveAppRoleAssignmentsComplex([appRoleAssignments])), "\"value\":\"admin\"", , )>"0", "1234567890", ""),
IIF(Instr(Join("", AssertiveAppRoleAssignmentsComplex([appRoleAssignments])), "\"value\":\"custom_role\"", , )>"0", "1234567890", ""),
IIF(Instr(Join("", AssertiveAppRoleAssignmentsComplex([appRoleAssignments])), "\"value\":\"member\"", , )>"0", "1234567890", "")
)
In this expression, you are setting up the role name and grabbing the corresponding custom role ID from Asana to replace the set of numbers. The role IDs must be parametrized - the IDs (the numbers) are placeholder for demonstration and must be replaced by your own Asana custom IDs.
- Important - the role name cannot have a space - use an underscore in its place.
Important - the order of the role in the expression will determine the priority of role assignment. Roles at the top will have higher priority. Later, if a user is in multiple role groups, they will get the highest priority role as defined here.
- Based on this example, if an user is in both a member and admin role group in Entra ID, they will receive the admin role in Asana.
Skip the Default value field
Set Target attribute to rbacRoles, which is what we just created
Set Match objects using this attribute to No
Set Apply this mapping to Always
To get the custom IDs from Asana
Navigate to the Manage roles page, click on the drop down to the right of each role, and click copy custom ID. Repeat this process for each standard role you plan to assign with SCIM, such as Asana member, admin, or guest, and for any custom role you have created. Super Admin roles are assigned only in the Asana admin console, not through SCIM.
The result should look like this:
Click OK, and Save.
Set up app roles
Go to Users and groups under Manage in the left navigation pane. Click on application registration on this screen.
We’ll create app roles that match the roles you have set up. Click Create app role.
Values set in each app role created here must match the naming in the Expression set above. The value cannot have a space. Use an underscore in the place of a space.
Standard Asana roles
Member
- Display name: Asana Members
- Allowed member types: Users/Groups
- Value: member
- Description: Asana member role
- Make sure Enable this app role is checked
Admin
- Display name: Asana Admin
- Allowed member types: Users/Groups
- Value: admin
- Description: Asana admin role
- Make sure Enable this app role is checked
Custom roles: create more custom app roles to match all the custom roles you have set up
- Display name: Asana <custom role>
- Allowed member types: Users/Groups
- Value: custom_role_1
- Description: Asana custom role #1
- Make sure Enable this app role is checked
Click Apply to save the app roles.
Add all other roles from your domain.
The result will look like this:
Create an Entra group for each Asana role and assign the role to the group
Now, create an Entra group for each Asana role
Now we’ll assign the role to the group. Go to Enterprise application > Asana application > Manage > User and groups:
Click on Add user/group and associate each group to their corresponding role:
The result will look like this:
Now the setup is complete and you can add the users to their corresponding groups to assign roles. When the next provisioning cycle runs, this configuration will assign the corresponding role to the users (alternatively, you can provision on demand) and you will see this reflected in Asana.
If you are provisioning users for the first time, and are looking to assign both license and role through Entra ID groups, please do this sequentially - provision users into one of license or role groups first, and then once the user is successfully provisioned, then you can assign the other license or role group to the user. If not, Entra will only assign one attribute and does not read the other as an ‘update’ to the user.
