M365 connection
Your IAM solution for identity data in the cloud
Quickly connect your systems to Azure AD and M365:
with IDM-Portal you shorten and accelerate your IAM processes.
Connect your IAM solution to M365
Connect your IAM solution – without another database – to your AD and Azure AD.
We offer you three practical options for an M365 connection:
- Native in a hybrid environment via AAD Connect
- Direct for quick access with PowerShell
- Cloud only: Asynchronous and direct via IAM Cloud Service
Identity Management with M365 and Azure AD
Use M365 natively in a hybrid IAM solution
Many companies manage user data in a hybrid environment, i.e. both on-premise
and in the cloud. In a Microsoft IT landscape, users are accordingly entered in
Active Directory and Azure AD (M365).
FirstWare IDM-Portal is an IAM solution that takes advantage of both worlds
and combines them with each other:
-
All user data and authorizations are managed centrally in IDM-Portal.
-
Entries and changes are updated directly and in real time in AD.
- AAD Connect sends the new data to your Azure AD.
- Both directories are always on the same up-to-date status.
AD groups for M365
DynamicSync for Azure AD is a new tool for dynamic group management
in Azure AD. With DynamicSync, you can use your AD groups to create M365
groups. Learn more on our DynamicSync website.
Direct control of M365 connection – for fast identity management
You can also use PowerShell instead of AAD Connect to sync data to Azure AD.
With PowerShell as a multifunctional tool, many AD/AAD/M365 administration tasks can be simplified and automated. PowerShell allows individual configurations, such as:
- the automatic assignment of licenses
- access to SharePoint
- memberships in Microsoft Teams
- the direct blocking of users in AAD
When synchronizing, user data is maintained in IDM-Portal, written to AD in real time, and then automatically updated in Azure AD using PowerShell.
FirstWare IDM-Portal is an IAM solution with an integrated PowerShell provider.
Access Microsoft 365 asynchronously and directly with IAM Cloud Services
If your user management is exclusively in the cloud, you can use the IAM Cloud Service
in IDM-Portal. The cloud-based service includes:
- M365 SelfUpdate
- Secure Teams governance
- M365 organizational management
It is recommended if no AD is available, or has no compelling priority. All important data can thus be stored in the cloud without any problems.
The IAM Cloud Service can be integrated optionally into the IDM-Portal. Through a direct interface (GraphAPI), the data is written directly to the AAD. An assistance database is available as an additional fail-safe.
The advantages
No additional database
Central administration
Individually customizable
IDM-Portal as an interface to M365 applications
M365 user management and licences
FirstWare IDM-Portal enables hybrid user and license management in a single interface. As an example, you can do the following:
- in AD and Azure AD: create a user
- only in AD: create a mailbox
- only in Azure AD: assign a M365 license
You decide for all attributes in which directory (AD, AAD) the update takes place.
With IDM-Portal, non-IT employees can also take over the handling of certain attributes (RBAC).
Manage Microsoft Teams memberships
Use Microsoft Teams in a more efficient way with IDM-Portal. Employees from organizational departments (e.g. department managers) can update their team’s team memberships manually or dynamically.
- Manually: user is directly assigned to a group
- Dynamically: based on a specific attribute value
As an example, if an employee’s department value changes to “Sales”, they will automatically gain access to the “Sales” team.
Manage access to SharePoint
With IDM-Portal, you can automatically assign access to SharePoint or OneDrive files to your employees. Based on certain attributes (e.g. department or location), employees are automatically assigned to a suitable group.
If the attribute value changes, the employee immediately loses access. On the other hand, employees can also request accesses thanks to integrable approval workflows.
With all solutions, the M365 administration is always auditable and secure.
