Tchater maintenant avec le support
Tchattez avec un ingénieur du support

Identity Manager 8.1.4 - Administration Guide for Connecting to SharePoint Online

Mapping a SharePoint Online environment in One Identity Manager Synchronizing a SharePoint Online environment Managing SharePoint Online user accounts and employees Managing the assignments of SharePoint Online groups and roles Mapping of SharePoint Online objects in One Identity Manager
SharePoint Online tenants SharePoint Online user accounts SharePoint Online groups SharePoint Online permission levels SharePoint Online site collections SharePoint Online sites SharePoint Online roles
Handling of SharePoint Online objects in the Web Portal Basic data for managing a SharePoint Online environment Configuration parameters for managing SharePoint Online Default project template for SharePoint Online Editing system objects About us

Handling of SharePoint Online objects in the Web Portal

One Identity Manager enables its users to perform various tasks simply using a Web Portal.

  • Managing user accounts and employees

    An account definition can be requested by shop customers in the Web Portal if it is assigned to an IT Shop shelf. The request undergoes a defined approval procedure. The user account is not created until it has been agreed by an authorized person, such as a manager.

  • Managing entitlement assignments

    When an entitlement is assigned to an IT Shop shelf, the entitlement can be requested by the customer in the Web Portal. The request undergoes a defined approval procedure. The entitlement is not assigned until it has been approved by an authorized person.

    In the Web Portal, managers and administrators of organizations can assign entitlements to the departments, cost centers, or locations for which they are responsible. The entitlements are inherited by all persons who are members of these departments, cost centers, or locations.

    If the Business Roles Module is available, managers and administrators of business roles in the Web Portal can assign entitlements to the business roles for which they are responsible. The entitlements are inherited by all persons who are members of these business roles.

    If the System Roles Module is available, supervisors of system roles in the Web Portal can assign entitlements to the system roles. The entitlements are inherited by all persons to whom these system roles are assigned.

  • Attestation

    To enable this, attestation policies are configured in the Manager. The attesters use the Web Portal to approve attestation cases.

  • Governance administration

    The rules are checked regularly, and if changes are made to the objects in One Identity Manager. Compliance rules are defined in the Manager. Supervisors use the Web Portal to check and resolve rule violations and to grant exception approvals.

    If the Company Policies Module is available, company policies can be defined for the target system objects mapped in One Identity Manager and their risks evaluated. Company policies are defined in the Manager. Supervisors use the Web Portal to check policy violations and to grant exception approvals.

  • Risk assessment

    You can use the risk index of entitlements to evaluate the risk of entitlement assignments for the company.One Identity Manager provides default calculation functions for this. The calculation functions can be modified in the Web Portal.

  • Reports and statistics

For more information about the named topics, refer to the following guides:

  • One Identity Manager Web Portal User Guide

  • One Identity Manager Attestation Administration Guide

  • One Identity Manager Compliance Rules Administration Guide

  • One Identity Manager Company Policies Administration Guide

  • One Identity Manager Risk Assessment Administration Guide

Basic data for managing a SharePoint Online environment

To manage SharePoint Online in One Identity Manager, the following basic data is relevant.

SharePoint Online authentication modes

The following master data is supplied for the authentication mode.

Table 33: Authentication mode properties
Property Description
System ID Name of the authentication mode. For SharePoint Online, AzureAD is the only authentication mode.
User prefix Prefix for formatting a login name for new user accounts. The associated authentication object is not a group. This means, the user account’s Group option is not set.
Group prefix Prefix for formatting a login name for new user accounts. The associated authentication object is a group. This means, the user account’s Group option is set.
Column for login name Column in the Person table used to format the login name for new user accounts. This information is required if employees are linked to user accounts though automatic employee assignment.

Job server for SharePoint Online-specific process handling

In order to handle SharePoint Online -specific processes in One Identity Manager, the synchronization server and its server functions must be declared. You have several options for defining a server's functionality:

  • In the Designer, create an entry for the Job server in the Base Data | Installation | Job server category. For detailed information, see One Identity Manager Configuration Guide.

  • Select an entry for the Job server in Manager | Basic configuration data | Server in SharePoint Online and edit the Job server master data.

    Use this task if the Job server has already been declared in One Identity Manager and you want to configure special functions for the Job server.

To edit a Job server and its functions

  1. In the Manager, select the SharePoint Online | Basic configuration data | Server category.

  2. Select the Job server entry in the result list.

  3. Select the Change master data task.

  4. Edit the Job server's master data.

  5. Select the Assign server functions task and specify server functionality.

  6. Save the changes.
Detailed information about this topic
Related topics
Documents connexes

The document was helpful.

Sélectionner une évaluation

I easily found the information I needed.

Sélectionner une évaluation